1 views collected around this technical thread.
This article introduces Ubuntu’s Uncomplicated Firewall (UFW), explaining how to enable, disable, reset, set default policies, and create, modify, or delete specific IP, port, and protocol rules using concise command-line examples, helping users quickly secure client machines with practical firewall configurations.
After CentOS 7 reaches end‑of‑life on June 30 2024, this guide explains why you must migrate, outlines three essential pre‑migration preparations, and provides detailed step‑by‑step commands to upgrade first to AlmaLinux 8 and then to AlmaLinux 9, including post‑migration checks and common pitfalls.
This article provides a comprehensive comparison of free PC firewall solutions, detailing each software's core functions, suitable scenarios, drawbacks, and source references, followed by key recommendations, compatibility notes, performance assessments, and user feedback to help readers choose the most suitable firewall.
Learn step‑by‑step how to configure iptables to log all dropped inbound and outbound packets to syslog, including creating a LOGGING chain, setting rate limits, customizing log prefixes, directing logs to a specific file, and interpreting the resulting log entries.
This guide explains what reverse SSH tunneling is, why it’s needed to reach servers behind firewalls, and provides step‑by‑step commands and configuration tips—including the use of the ssh -R option, setting up a persistent machine, and essential sshd settings.
This guide lists 30 commonly exposed high‑risk ports such as LDAP, MySQL, and Docker, explains the security threats they pose, and provides practical firewall, service‑management, and port‑closing steps—including command‑line examples—to help you harden your systems against attacks.
This guide explains the differences between firewalld and iptables on CentOS 7, introduces zone management, details iptables packet flow, tables, chains, and provides practical commands for installing, configuring, and managing firewall rules, including examples for SSH and ping traffic.
This article provides a comprehensive overview of Linux's Netfilter framework and its iptables user‑space tool, explaining their hook‑based architecture, core data structures, rule tables and chains, common configuration commands, practical use cases, and both strengths and limitations for network security.
This article provides a comprehensive, step-by-step tutorial on checking, installing, editing, and applying iptables firewall rules on a Linux system, including common port allowances, ICMP handling, rule persistence, and startup configuration using command-line examples.
This article introduces iptables, explains its core concepts such as chains, rules, and tables, demonstrates common command‑line operations for displaying, adding, deleting and modifying rules, and presents a real‑world firewall configuration example for securing jump‑servers on CentOS.
To prevent malicious API abuse, implement layered defenses such as firewalls to block unwanted traffic, robust captchas and SMS verification, mandatory authentication with permission controls, IP whitelisting for critical endpoints, HTTPS encryption, strict rate‑limiting via Redis, continuous monitoring with alerts, and an API gateway that centralizes filtering, authentication and throttling.
This article explains a comprehensive set of techniques—including firewalls, captchas, authentication checks, IP whitelists, data encryption, rate limiting, monitoring, and API gateways—to protect interfaces from malicious abuse and ensure secure, reliable service operation.
Exposing your public IP address can invite DDoS floods, vulnerability scanning, privacy breaches, and targeted phishing or malware attacks, so you should protect it with firewalls, regular updates, secure VPN connections, and by avoiding public disclosure on social platforms.
This article lists the most frequent causes—such as an unstarted application, incorrect port listening, cloud security‑group settings, firewall rules, application‑level IP restrictions, network problems, and user‑side issues—and provides step‑by‑step commands and screenshots to help troubleshoot and restore access to cloud server ports.
This article explains what Firewalld is, outlines its key features such as zones, runtime versus permanent settings, services, and dynamic updates, and provides step‑by‑step commands to create firewall rules that limit access to an Nginx server on port 8088 to a single IP address while leaving other ports unrestricted.
The SRE team diagnosed an in‑flight Wi‑Fi outage for the DeWu e‑commerce app by reproducing the problem, capturing packets with ping, traceroute and tcpdump, discovered a firewall rule misclassifying the domain as a download site, and resolved it through a vendor‑issued policy update, restoring connectivity on both ATG and SATCOM links.
This article introduces ProxySQL as a high‑performance MySQL proxy, explains its request flow, multi‑layer configuration system, key tables, and demonstrates practical scenarios such as read‑write splitting, hostgroup weight tuning, replication‑lag handling, blacklist/whitelist rules, and firewall protection.
This article introduces iptables, explains its core concepts such as chains, rules, and tables, demonstrates common commands for listing, adding, deleting, and modifying rules, and presents a step‑by‑step firewall configuration case for securing jump‑hosts on CentOS systems.
The article recounts a Kubernetes cluster intrusion where a misconfigured kubelet allowed crypto‑mining, details the forensic steps taken—including empty iptables, kubelet API exposure, and commented‑out settings—and offers concrete hardening recommendations to prevent similar attacks.
This article provides a comprehensive overview of iptables, detailing its host‑type filter table, limitations, the four main tables (filter, nat, mangle, raw), their respective chains, common command examples, and explains NAT concepts such as SNAT, DNAT, and MASQUERADE for Linux network security.