This page looks plain and unstyled because you're using a non-standard compliant browser. To see it in its best form, please upgrade to a browser that supports web standards. It's free and painless.

Blog About Dedicated Servers

« | »

APF Firewall 0.9.4-7

Luigi Ramone | 15 December, 2005 21:32

Just thought I'd update the howto's for APF.

Type ifconfig

Find out if it’s using eth0 or eth1.

Usually its eth0 but if its not, change it in conf.apf or you’ll be completely blocking the server from access

wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz

tar -xvzf apf-current.tar.gz
cd apf*
./install.sh
pico -w /etc/apf/conf.apf

RESV_DNS="1"

All SYSCTL options should be set to 1 EXCEPT for
SYSCTL_OVERFLOW="0"
SYSCTL_SYNCOOKIES="0"

USE_DS="1"
USE_AD="1"



FOR PLESK:

IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,993,995,8443"
IG_UDP_CPORTS="37,53,873"

EGF="1"
EG_TCP_CPORTS="20,21,22,25,53,37,43,80,113,443,465,873"
EG_UDP_CPORTS="53,873"

For CPANEL:

IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,993,995,2082,2083,20 86,2087,2095,2096"
IG_UDP_CPORTS="37,53,873"


EGF="1"
EG_TCP_CPORTS="20,21,22,25,37,53,43,80,113,443,465,873,2087,2089"
EG_UDP_CPORTS="53,873"

apf –s to start firewall.

If you are not kicked out of SSH and you can type commands after it loads, that means it’s installed correctly.

pico -w /etc/apf/ad/conf.antidos

LP_KLOG="1"

USR_ALERT="1"
USER = “root”
ARIN_ALERT="1"

pico -w /etc/apf/conf.apf

change DEVM to 0

apf -r

Cpanel , Security , Plesk :: Comment (0) :: Permalink :: Trackbacks (2)

Add comment

Topic

Text

Your name

Your email address (if any)

Your personal page (if any)


authimage




Powered by Boonic, Bloogo & pLog
This Blog does not have any affiliation nor relation with the mentioned companies. All the logotipos, trade names and images are property of the companies that registered them.