A brief to various iptables commands
We will use an example based approach to examine the various iptables commands. In this first example, we will create a very simple set of rules to set up a Stateful Packet Inspection (SPI) firewall that will allow all outgoing connections but block all unwanted incoming connections:
Categories: Linux Tags: accesses, base, bases, block, byte, check, command, community, computer, configuration, configure, configured, connection, create, determine, edit, edition, execution, firewall, Generator, hosts, incoming, interface, listing, policy, port, ports, prevent, remote, router, sbin, scripts, server, servers, service, services, settings, shell, source, ssh, switch, system, systems, targeted, traffic, understanding, user, what
How to configure xinetd package in fedora
xinetd, the eXtended InterNET Daemon, is an open-source daemon which runs on many Linux and Unix systems and manages Internet-based connectivity. It offers a more secure extension to or version of inetd, the Internet daemon.
xinetd performs the same function as inetd: it starts programs that provide Internet services. Instead of having such servers started at [...]
Categories: Linux Tags: accesses, activation, attack, attacker, attackers, attacks, bind, command, config, configuration, configure, configured, connection, create, d, daemon, daemons, determine, directory, edit, edition, enable, extension, Fedora, file, functionality, hosts, incoming, ing, install, linux, listing, log, logging, logins, logs, names, network, networking, port, ports, protocol, protocols, roots, rpm, s, sbin, secure, Security, server, servers, service, services, settings, stop, system, systems, understanding, unix, uration, user, usr
How to Implement Disk Quotas on Linux
This tutorial walks you through implementing disk quotas for both users and groups on Linux, using a virtual filesystem, which is a filesystem created from a disk file. Since quotas work on a per-filesystem basis, this is a way to implement quotas on a sub-section, or even multiple subsections of your drive, without reformatting. This [...]
Categories: Linux Tags: avail, block, byte, command, create, data, Database, databases, dependencies, devices, directory, edit, edition, Fedora, file, file files, format, grep, group, images, install, interface, linux, multiple, roots, rpm, sbin, subsection, system, systems, tools, user, usr, virtualizer, what
An Introduction to Basic IPv4 Routing
All of the operations considered in this article are operations upon a router, whether that router is a Linux box or Cisco dedicated hardware or some other type of machine. In this chapter I consider the traditional methods of IPv4 routing as using static configurations that are manually input by the network administrator.
1.1 Traditional IPv4 [...]
Categories: Networking Tags: activation, administrator, algorithm, authenticate, authentication, avail, bases, bind, boot, build, capability, check, cisco, command, community, computer, configuration, configure, configured, connection, Copy, create, daemon, daemons, Database, databases, dependencies, determine, developers, devices, difference, enable, fastethernet, file, functionality, Generator, group, help, hosts, ignore, incoming, install, interface, interoperability, isp, kernel, linux, listing, machine, mask, message, multiple, names, neighbors, netmask, netstat, network, networking, openness, policy, port, ports, protocol, protocols, repositories, Repository, roots, router, sbin, scope, scripts, secure, Security, server, servers, sessions, settings, source, speed, syntax, system, systems, table, telnet, tools, track, traffic, travelers, understanding, unix, upload, user, what
How to install BIND 9.3.x on FreeBSD
FreeBSD 4.x and 5.1 ships with BIND version 8.x as the default or base installation. FreeBSD 5.3 – the first of the stable 5.x series – ships with BIND 9.3.0 and some annoying traits. FreeBSD 6.2 ships with BIND 9.4.1 as the base installation.
FreeBSD differentiates between a base DNS install and a normal DNS install. [...]
Categories: DNS Tags: bind, bind 9, bind version, chroot, command, configuration, configuration options, configure, Copy, create, difference, directory, edit, edition, enable, file, help, install, logs, port, ports, sbin, scripts, server, servers, system, tools, usr
How to Monitor Network Services with TCP Wrappers in Linux
Most Linux distributions ship with tcp_wrappers “wrapping” all your TCP services. A tcp_wrapper (known as /usr/sbin/tcpd) is invoked from/sbin/inetd instead of the real service, such as telnet or ftp. tcpd then checks the host that is requesting the service and either executes the real server or denies access from that host. tcpd allows you to restrict access to your tcp services. You should make [...]
Categories: Linux, Security Tags: accesses, check, client, configuration, configure, connection, incoming, intrusions, linux, logs, machine, network, networking, protect, protection, roots, sbin, server, servers, services, system, traps, usr, what
How to have e-mail delivered at special times
E-Mail delivery can be invoked by issuing the command "sendmail -q". For those who are interested in what sendmail actually does, "sendmail -q -v" will give a more verbose version of the delivery process. It is very convenient to automate the process of e-mail delivery. A tool commonly used for this process is cron.
Categories: Tech Guru Tags: crontab, dial on demand, edit, edition, file, format, fri, install, lt, mailhost, man page, passwords, pop3 protocol, protocol, queues, sbin, send e mail, sendmail, single line, stop, sun, system, usr, weekdays
How to Prevent System Reboot with Ctrl-Alt-Del – Linux
The "Three-Finger-Salute" or, the key combination Ctrl+Alt+Del is typically mapped to the command /sbin/shutdown -r now. In other words, it reboots your system. Sometimes this may be unwanted behavior, so this tip shows you how to disable, or remap that key combination.
Categories: IT-Tips, Linux Tags: command, edit, edition, file, linux, listing, prevent, sbin, system, systems
How to set the hardware clock on your Linux box
Setting the hardware clock is especially useful in case you have clock problems. If you experience a clock that is losing or gaining a lot of time each after a reboot, set hardware clock right, then remove /etc/adjtime.
50 quick linux command tips
1. How to you change file ownership and chown files recursively?
# chown user:user folder -R
2. How to view queued mail in sendmail or postfix?
# mailq
3. How to show which alternative binary program does your machine executes first?
# alternatives –display program-name
4. How to create public/private rsa key pair?
# ssh-keygen
5. How to log out from your current [...]
Categories: Linux Tags: acpi, activation, authenticate, bases, build, check, command, configuration, configure, connection, create, directory, exports, file, firewall, folders, format, group, hosts, Identify, images, install, interface, kernel, linux, listing, logins, logs, machine, microsoft, network, networking, recursion, recursively, roots, sbin, sendmail, services, shell, ssh, system, systems, tools, useradd, what, Windows
How to block consecutive IP address using scripts
There are times that a server does not need to listen and process any TCP/UDP request for a long list of consecutive local IP addresses.
This blog entry provides a starting point of creating server scripts to block a long list of consecutive IP address from the server for permanent blocking.
To start, launch your fave editor [...]
