Archive for the ‘Firewalls’ Category:
ip_conntrack table is full and dropping packets
Last day one of our server had an attack, attack was not so big but still server was unresponsive because of this. After some research I found that this is because of iptables which are being load while handling so much traffic. Then I found a good article on the same issue which you can read by clicking below linking here.
Installing & configuring shorewall firewall in Ubuntu/Debian
Shore line firewall known as “Shorewall”, it is a very high level firewall and very easy to install and ocnfigure
How to install :-
sudo apt-get install shorewall
Enableing passive mode in FTP server with CSF firewall
Passive mode is always very important for ftp servers, if you are running csf firewall and cannot connect to ftp server then it means that range of passive ports is blocked in firewall. Here are simple steps
1) Add Passive Port range 30000-350000 to your Pureftp or Proftp configuration file
i) For Pure FTP
Vyatta
Vyatta Software combines the features, performance and reliability of an enterprise-class router, firewall and VPN with the cost savings and flexibility of open-source solutions.
This Software can be used as cheap alternative router and firewall compared to if we buy special hardware for firewall/router.
Myself not yet tried this software fully. Only I install in virtualbox. Review herein after I try this software.