[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Security/Firewall advice

Subject: RE: [cobalt-users] Security/Firewall advice
From: "Paul Shuttleworth" <Paul@xxxxxxxxxxxxx>
Date: Fri Jul 19 11:45:37 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Thanks Gerald

That's pretty much what I thought, I will check that those ports are
available to me and ask the co-lo to open them up if not.

Cheers
Paul.

-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Gerald Waugh
Sent: 19 July 2002 15:34
To: Cobalt Users Listserver
Subject: Re: [cobalt-users] Security/Firewall advice


On Fri, 19 Jul 2002, Paul Shuttleworth wrote:

> Hi All
>
> As a newbie myself I WILL risk the flames and the wrath of the group and
ask
> a question!!! ;-)
>
> I have just put our RAQ4r in with the co-lo yesterday and all is well with
> the world (well it will be as soon as I have persuaded my firewall to let
me
> SSH from my machine to the box... but that's my problem) anyway, I have
set
> up portsentry and ip chains ready to implement and configure. Whilst
talking
> to the techie at my co-lo it seems they run a firewall on the incoming
side
> of their network, the only ports they have open by default are
> 80,20,21,22,110,25 I have asked them to open 81 also for admin. My
question
> is should I still set up portsentry/ipchains to help prevent attacks ? ( I
> could still get attacked from within right?) and also can anyone see any
> other ports that would be a good idea to ask them to open up ( I read some
> posts on ipchains requiring port 53?) any advice appreciated.
>

Yes, its a good idea to secure your server, even if the isp has security.
You need ports 443 and 444 open for SSL and/or admin GUI, and if you are
running DNS you will need port 53


--
Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
http://frontstreetnetworks.com | Website Hosts & SOHO Networks
229 Front Street, Ste.#C, New Haven, CT. 06513 United States
voice +1 302-785-0699 | fax +1 203-785-1787

___________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To subscribe/unsubscribe, or to search the archives, go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users

References:
- Re: [cobalt-users] Security/Firewall advice
  - From: Gerald Waugh

Prev by Date: [cobalt-users] E-mail problem
Next by Date: RE: [cobalt-users] How to stop Real server :(
Previous by thread: Re: [cobalt-users] Security/Firewall advice
Next by thread: Re: [cobalt-users] Security/Firewall advice

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index