evolix
/
minifirewall
16
0
Fork 0
Code Issues 4 Pull Requests 1 Releases Activity
Simple and flexible firewall for Linux server
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
86 Commits
7 Branches
0 Tags
112 KiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
minifirewall/README.md

44 lines
1.4 KiB
Raw Permalink Normal View History

Update README.md
2 years ago
Improve descriptions / comments (switch all in english, etc.)
6 years ago
Update README.md
2 years ago
Fix typo in install doc
2 years ago
Update README.md
2 years ago
Improve descriptions / comments (switch all in english, etc.)
6 years ago
Update README.md
2 years ago
Improve descriptions / comments (switch all in english, etc.)
6 years ago
Update README.md
2 years ago
Minifirewall is now under GPLv3 license
2 years ago
  1. Minifirewall
  2. =========
  4. Minifirewall is shellscripts for easy firewalling on a standalone server
  5. we used netfilter/iptables http://netfilter.org/ designed for recent Linux kernel
  6. See https://gitea.evolix.org/evolix/minifirewall
  8. ## Install
  10. ~~~
  11. install -m 0700 minifirewall /etc/init.d/minifirewall
  12. install -m 0600 minifirewall.conf /etc/default/minifirewall
  13. ~~~
  15. ## Config
  17. Edit /etc/default/minifirewall file:
  19. * If your interface is not _eth0_, change *INT* variable
  20. * If you don't IPv6 : *IPv6=off*
  21. * Modify *INTLAN* variable, probably with your *IP/32* or your local network if you trust it
  22. * Set your trusted and privilegied IP addresses in *TRUSTEDIPS* and *PRIVILEGIEDIPS* variables
  23. * Authorize your +public+ services with *SERVICESTCP1* and *SERVICESUDP1* variables
  24. * Authorize your +semi-public+ services (only for *TRUSTEDIPS* and *PRIVILEGIEDIPS* ) with *SERVICESTCP2* and *SERVICESUDP2* variables
  25. * Authorize your +private+ services (only for *TRUSTEDIPS* ) with *SERVICESTCP3* and *SERVICESUDP3* variables
  26. * Configure your authorizations for external services : DNS, HTTP, HTTPS, SMTP, SSH, NTP
  27. * Add your specific rules
  29. ## Usage
  31. ~~~
  32. /etc/init.d/minifirewall start/stop/restart
  33. ~~~
  35. If you want to add minifirewall in boot sequence:
  37. ~~~
  38. systemctl enable minifirewall
  39. ~~~
  41. ## License
  43. This is an [Evolix](https://evolix.com) project and is licensed
  44. under the GPLv3, see the [LICENSE](LICENSE) file for details.