LUPA held the third technical salon in Hangzhou-linux firewall configuration-Linux Enterprise Application-Linux server application information. For details, see the following. Time:-, Saturday, December 16
Location: LUPA headquarters (9f, Xinya technology building, No. 6, gului Road, Hangzhou) Click to view the electronic map
Registration Method: to determine the number of participants, please reply here
Vi/etc/sysconfig/iptablesIn the open file (on the next line of configuration 22 port), add-A input-m State--state new-m tcp-p TCP--dport 3306-j ACCEPT (Allow 3306 ports through the firewall)-a input-m state--state new-m tcp-p TCP--dport 3306-j ACCEPT -a input-j reject–reject-with Icmp-host-proh Ibited-a forward-j reject–reject-with icmp-host-prohibited COMMIT #####################################/etc/init.d
In the front I sent an article "Juniper Firewall diagram L2TP VPN Configuration", we learned from that article how to configure. But we know that the L2TP VPN is only connected to our L2TP VPN server, but it doesn't encrypt our data, and we know that IPSec's data is encrypted, and if the IPSec-unaware friend can look at my previous IPSec VPN concepts (i) And the concept of IPSec VPN (ii) to understand. Okay
Tags: GPO. EXE technology port network communication connection appears in Microsoft EXEBeginners SQL SEVER 2008, the results of the first debugging this problem arises: And then Baidu a bit, the meaning of these three options:
Cancel remote debugging: Cancels the attempt to start debugging. Your computer's security settings remain the same.
Suppress restrictions on remote debugging from computers in the local network (subnet): Enables remote debugging of computers on the local
The show command for the Flying Tower Firewall FortiGate shows the related configuration and uses the GET command to display live status
Show Full-configuration display current full configuration
Show system global View host name, management port
Display the results as follows
Config system global
Set Admin-sport
It is too cumbersome to configure iptables for several VPS. I saw a script for automatically configuring the iptables firewall in Zhu Ge's LNMP script. I borrowed it and changed it for the people who needed it; only common port settings are provided. if you have special requirements, you only need to add or reduce the corresponding Port. usage: wget-chttp: // ph4ntasy.googlecode.com/f several VPS configurations
IptablesThis is too cumbersome. we can s
Article Title: common firewall configuration methods for Linux Iptables. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.
Common firewall configurations of Iptables
The script environment is eth0 Internet and eth1 intranet;
#!
"/>650) this.width=650; "Src=" Http://s4.51cto.com/wyfs02/M00/89/C0/wKioL1gb6zjxV5ajAAC6RrMkobg703.png-wh_500x0-wm_3 -wmp_4-s_636057886.png "style=" Float:none; "title=" 4.png "alt=" Wkiol1gb6zjxv5ajaac6rrmkobg703.png-wh_50 "/>H323_ras to bind H323_ras protocol When 1720 port is turned onH323_any indicates that only the 1720 port is open and does not contain protocol informationNote: In some specific programs, you need to bind protocol information when you define a port, such as H323,Sip protoc
Go to the/etc/sysconfig/directory and run the vi command to edit the SuSEfirewall2 file.- gt; # viSuSEfirewall2: find FW_SERVICES_EXT_TCP in the file, add the service name or port corresponding to the service, such as SSH, FW_SE... go to the/etc/sysconfig/directory and run the vi command to edit the SuSEfirewall2 file.-> # vi SuSEfirewall2: find FW_SERVICES_EXT_TCP in the file, add a service name or port corresponding to the service, for example, SSH, FW_SERVICES_EXT_TCP = "ssh" or FW_SERVICES_E
Article title: detailed analysis of Linux proxy server and firewall configuration. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.
Proxy/firewall
1. iptables rule table
Filter (for filtering systems): INPUT, FORWARD, OUTPUT
1. query the Firewall StatusService iptables status2. Enable FirewallService iptables start3. Disable the FirewallService iptables stop4. Restart the FirewallService iptables restart5. permanently disable the FirewallChkconfig iptables off6. Enable the firewall that is permanently disabledChkconfig iptables onSupplement:Edit the/etc/sysconfig/iptables file to configure different ports for external service p
Configuration Description:
Cloud service provider: Aliyun
Server os:windowsserver2012 (64bit)
Goal: Configure the apache2.4+php5.5 environment
Note:
Since I rented the Aliyun RDS database, this is not the place to install MySQL.
Because the Aliyun WindowsServer2012 is 64bit, so the resource bits downloaded in this article are 64 bits, if you are using 32bit, download 32-bit resources
One: Download Resources
1. Download VC11 Vcredist_x64.exe (32-bit d
CiscoPIX firewall EzVPN configuration template surface 1 Define the address pool to which the VPN Client is allocated pix (config) # iplocalpoolezvpn-pool192.168.1.1-192.168.1.100pix (config) # iplocalpoolezvpn-pool2192.168.1.101-192.168.1.2002 define VPN group user properties pix (config) # vpngro
Cisco PIX Firewall EzVPN co
1. Firewall Configuration 1.1. zzsrv1
First, you need to analyze the role of zzsrv1. It is the primary DNS, website, DHCP server, clock server.
We decided not to impose site restrictions, but only inbound restrictions, similar to XP
View current configuration
# Iptables-l
Chain input (Policy accept)
Target prot opt source destination
Chain forward (Policy acce
policy web match source-address any[Email protected]# set security Policiesfrom-zone untrust To-zone trust policy web match destination-address Web match AP Plication any[Email protected]# set security Policiesfrom-zone untrust To-zone trust policy[Email protected]# set security Policiesfrom-zone untrust To-zone Trust policy web then permit[Email protected]# Insert Security Policiesfrom-zone untrust to-zone Trust policy web before policy Default-deny2.4 Static NAT
172.17.50.116 WWW
Interface ethernet0/1 // Intranet
IP address 172.16.50.254 255.255.255.0
Configuration of ruijie Router
Access-List 1 permit any
Interface fastethernet 1/0
IP address 222.189.206.70 255.255.255.248
Ip nat outside //
No shut
Exit
!
Interface fastethernet 1/1
IP address 172.16.0.254 255.255.255.0
Ip nat inside //
No shut
Exit
!
Ip nat inside source list 1 interface fastethernet 1/0 overload // Na
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.