Re: [PLUG] Web Ass Pfirewall

Robert via plug on 17 Mar 2021 20:20:07 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Web Ass Pfirewall

From: Robert via plug <plug@lists.phillylinux.org>
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] Web Ass Pfirewall
Date: Wed, 17 Mar 2021 23:19:38 -0400
Authentication-results: smtp01.armstrong.cmh.synacor.com smtp.user=mlists; auth=pass (LOGIN)
Dkim-signature: v=1; a=rsa-sha1; d=zoominternet.net; s=20180516; c=relaxed/simple; q=dns/txt; i=@zoominternet.net; t=1616037579; h=From:Subject:Date:To:MIME-Version:Content-Type; bh=jlctDS93EyHWqzeglgT3y8Q3eiY=; b=G8o9crhZ/8WwRrWYTDFLLSVYv+S8v4/n9h4dPgNUrGCcqSMl7ak8zI1+HSUv5bFU nxgjYrV8odHTNv7S+Ma5FkAoasxpCd8tzTHbglHKSoCx/NqY3yGuYOOpH0gpeQLn HiZrK9JJ73NBZ0pqwN6ICkWWifUv/Uu/WWqpc9oZhcYNe77cz6VgACqkBqIojqGi BpZtjqlUhndczu0jHJWvd5nLi5QI5dviXI9lQPrxCtI0YkUgGX9JLcQo21MCtwrR IIkMYbl8zvK2tnL1+vEhKG2p1B+DjKgJt3EkOHLQS+5/i8WDC0FtuCil3sUU7KgC EuRZawNR0h5NqNeuuSCgqA==;
Reply-to: Robert <mlists@zoominternet.net>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.8.1

To be honest, why are you leaving a dev server open on the internet? Ialso have a vps but I don't need anyone accessing it and if I did Iwould add their IP Address to the firewall to allow it. Simple solutionis to block everything and only allow what needs to get in.

I use IPTABLES with IPSET for this. If I need to add anyone I just addthem to IPSET no need to change/add/remove rules from the firewall. Presently the only IP's allowed are works public IP and my home IP.



On 17/03/2021 16:29, Ron Mansolino via plug wrote:

I have a vps that I don't do too much with, essentially a dev server.
Because it sits out on the net it logs an unwieldy number of intrusion attempts and nosey infogathering requests.
I've been manually filtering these with iptables, but that isn'tscaling well (and it's impossible to block cloud services thatcontinually allocate new netblocks). I'd like to block all of AWS,GCP, etc, but it's like playing whack-a-mole. I could use somesuggestions for a WAF that I won't eventually have to pay for.
also, did the posting rules change here? I don't check here often, andthings aren't working as I expect them to.
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug


--

Regards,
Robert


Smile, it increases your face value.........

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Web Ass Pfirewall
  - From: Fred Stluka via plug <plug@lists.phillylinux.org>

References:
- [PLUG] Web Ass Pfirewall
  - From: Ron Mansolino via plug <plug@lists.phillylinux.org>

Prev by Date: [PLUG] Linux Mint on Intel iMac /w/ Airport Extreme
Next by Date: [PLUG] Schneier: Illegal Content and the Blockchain
Previous by thread: Re: [PLUG] Web Ass Pfirewall
Next by thread: Re: [PLUG] Web Ass Pfirewall
Index(es):
- Date
- Thread