greenace92 Posted November 11, 2015 Share Posted November 11, 2015 I'm working on securing my Debian 8 server and I have the option of setting up the iptables or firewall as implemented by my server provider. I intend to do both but I am wondering if that is redundant to do both. At any rate, I was following along this blog here: bencane.com/2012/09/iptables-linux-firewall-rules-for-a-basic-web-server/ For iptables rules. At first I udpate my server, then I install iptables-persistent, although I later realized I should install it after having modified iptables which I have determined comes as a loadable-kernel module mentioned in this thread's answer, number 2 http://superuser.com/questions/813323/iptables-module-ip-tables-not-found-for-root Anyway, I can't do this command to save #/etc/init.d/iptables-persistent save For one, the iptables-persistent folder is located in /usr/share/doc/ I don't think that it is supposed to be a folder rather a script file Inside the /usr/share/doc/iptables-persistent folder is changelog.gz I'm not sure what is going on. I save the rules by doing dpkg-configure iptables-persistent Verifying by cat /etc/iptables/rules.v4 I see that the rules are there, I have just rebooted to see if the changes are actually saved/implemented at boot. If someone can shed some light on this subject. Regarding the ports I think that there are a lot right? I mean I saw one port with a beginning number of 3000. If someone could just do a brief rundown on ports/ which ones are of concern. So far I have 20,21 as FTP, 22 SSH, 80 443 webserver, then there was talk of the port mysql uses 3036? Then there was mention of anything above 1024 being not for root users... I'm not sure kind of overwhelmed which ports to use and which ones to block. Thanks for any help. Quote Link to comment https://forums.phpfreaks.com/topic/299439-problems-with-iptables-on-debian-8-and-question-about-ports/ Share on other sites More sharing options...
scootstah Posted November 11, 2015 Share Posted November 11, 2015 Anyway, I can't do this command to save #/etc/init.d/iptables-persistent save The command should be: sudo invoke-rc.d iptables-persistent save Quote Link to comment https://forums.phpfreaks.com/topic/299439-problems-with-iptables-on-debian-8-and-question-about-ports/#findComment-1526193 Share on other sites More sharing options...
greenace92 Posted November 11, 2015 Author Share Posted November 11, 2015 I was informed that iptables-persistent was replaced by netfilter-persistent Thank you for the response. Quote Link to comment https://forums.phpfreaks.com/topic/299439-problems-with-iptables-on-debian-8-and-question-about-ports/#findComment-1526241 Share on other sites More sharing options...
scootstah Posted November 12, 2015 Share Posted November 12, 2015 No it wasn't. They're two separate things. iptables-persistent is an iptables plugin that implements netfilter-persistent. Quote Link to comment https://forums.phpfreaks.com/topic/299439-problems-with-iptables-on-debian-8-and-question-about-ports/#findComment-1526249 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.