Linux Firewall help...

[3x0]

OK,

I've got linux on my machine, sendmail running, apache all setup, ftp, blah, blah, blah..

but since I'm on redhat, my firewall won't let ANYBODY view all this stuff I got ready for my site. Nobody can view my site besides through localhost (only me).

So, how do I configure my firewall to let other use portsa 21, 80, pop3 and smtp (whatever ports those are) , anyone help?

Plz help if you can, thx

Sam Mattord

 

[n0cmonkey]

man iptables
Check out LDP, LinuxNewbie, and GOOGLE.
Make sure you have ALL updates if you HAVE to run crap like ftp and sendmail.

 

[3x0]

Could you give me an exact command? I'm a real idiot, trust me...plz??

 

[n0cmonkey]

<< Could you give me an exact command? I'm a real idiot, trust me...plz?? >>



Nope. I cant. Look it up. BTW, if you are truely an idiot (which I doubt, I just think you are being lazy), you should not be running sendmail or ftp since you probably did not set them up correctly.

 

[3x0]

I am an idiot, and a friend stepped me through the setup of both, along with Apache, I haven't done anything but linux instilation by myself, and how can I be lazy on something I can't do? I'm taking the time to ask for help aren't I?!!

 

[n0cmonkey]

<< I am an idiot, and a friend stepped me through the setup of both, along with Apache, I haven't done anything but linux instilation by myself, and how can I be lazy on something I can't do? I'm taking the time to ask for help aren't I?!! >>



But that is not what you should be doing right now. Right now you should be reading docs to understand what you are doing. Asking questions is a last resort. Go read.

 

[GigaCluster]

If you're helpless enough AND desperate enough, PM me your IP, some user account, the root password, and I can see what I can do.

I can't guarantee anything, though.

 

[n0cmonkey]

<< If you're helpless enough AND desperate enough, PM me your IP, some user account, the root password, and I can see what I can do.

I can't guarantee anything, though. >>



That is just evil. Plus he never mentioned having ssh on there, and it sounds like ssh is probably blocked.

 

[GigaCluster]

<<

<< If you're helpless enough AND desperate enough, PM me your IP, some user account, the root password, and I can see what I can do.

I can't guarantee anything, though. >>



That is just evil. Plus he never mentioned having ssh on there, and it sounds like ssh is probably blocked. >>



What's evil about it? Back in the day when I was just getting acquainted with Linux, some very nice people helped me by logging into my machine and doing it for me (with the appropriate explanation.) I just want to return the favor.

Also, telnet is usually running by default on a lot of newbie Linux distributions... maybe designed for situations like this.

 

[n0cmonkey]

<<

<<

<< If you're helpless enough AND desperate enough, PM me your IP, some user account, the root password, and I can see what I can do.

I can't guarantee anything, though. >>



That is just evil. Plus he never mentioned having ssh on there, and it sounds like ssh is probably blocked. >>



What's evil about it? Back in the day when I was just getting acquainted with Linux, some very nice people helped me by logging into my machine and doing it for me (with the appropriate explanation.) I just want to return the favor. >>



No offence meant, Im just paranoid



<< Also, telnet is usually running by default on a lot of newbie Linux distributions... maybe designed for situations like this. >>



I guess that is one of the many reasons I dont use linux

 

[GigaCluster]

<< I guess that is one of the many reasons I dont use linux >>



I know what you mean -- when I first did the "netstat -a" command on Linux Mandrake and saw a screenful of "LISTEN" ports, I decided to switch to UNIX immediately. I now use FreeBSD (secured by ipfw), and I'm very happy with it so far.

 

[n0cmonkey]

<<

<< I guess that is one of the many reasons I dont use linux >>



I know what you mean -- when I first did the "netstat -a" command on Linux Mandrake and saw a screenful of "LISTEN" ports, I decided to switch to UNIX immediately. I now use FreeBSD (secured by ipfw), and I'm very happy with it so far. >>



Dump ipfw and get IPF. It is much better. I use OpenBSD right now, although I will soon have a FreeBSD dualie. Its been a while since I used FreeBSD but hopefully I can figure it out.

 

[GigaCluster]

<< Dump ipfw and get IPF. It is much better. >>



How is it better? Maybe I'll switch, given enough reasons.

 

[n0cmonkey]

<<

<< Dump ipfw and get IPF. It is much better. >>



How is it better? Maybe I'll switch, given enough reasons. >>



IPF supports stateful inspection. Last time I looked ipfw didnt. That should be reason enough

 

[3x0]

Give me a way o PM you, AIM MSN ICQ??? You pick one