-------------------------------------------
Do I need a Firewall in Linux? - Duration: 5:59.
Linux firewall.
What it is?
Do you need?
How to set up and configure it.
Everything in this video.
Before I start I would like to let you know that I am not a computer security expert and
this video just presents my point of view.
I am just an average Linux user as you are.
If you follow my instruction, do it with caution.
So…
What is a firewall?
A firewall is a network security program that controls the incoming and outgoing connections
based on the rules that are set.
In simple words, it is a sort of wall between your computer and outside network.
Do you need a firewall?
You may think it is good to have.
And you will be right!
However, all Linux distribution come without a firewall.
To be more correct with inactive firewall.
Because the Linux kernel has build-in firewall, so technically all Linux distros have a firewall
but it is not configured and activated.
I believe it is because using a firewall require some expertise.
But don't worry, you Linux is still secure even without an active firewall.
By default, most of the distributions such as Ubuntu and Linux Mint have no open ports,
so your computer cannot be accessed by intruders.
Nevertheless, I recommend to activate a firewall.
It is better to be safe than sorry.
It doesn't use many resources, but it adds extra layer of security.
An inexperienced user can accidentally open some ports without knowing it.
For example, by installing samba, ssh, apache.
In this case, firewall will still protect the system.
How to set up a firewall?
I will show you two ways to set up a firewall.
UFW – which is probably the most user friendly firewall available in Linux.
and iptables - which is a more advanced but probably a proper way to configure the Linux Firewall.
Do you use a firewall?
What firewall do you use?
Let's collect some stats by voting here!
UFW If you prefer to have graphical interface,
simply install GUFW.
Open it and enable.
That's it.
Your firewall is active and the default settings to deny incoming and allow outgoing connections
is fine for most users.
No one will be able to connect to your computer, while any application in your computer would
be able to reach the outside world.
If you need to open some ports to be able to conned to your computer from the outside,
you go to the rules tab and open ports for specific application.
For example, if you need to access you computer remotely through ssh, you select ssh.
GUFW is a very simple and effective firewall application.
You can use UFW from terminal too.
Enable it.
Check its status:
Here are the same rules to deny incoming and allow outgoing.
If you need to open some ports.
It is as simple as to run
to allow ssh access to your computer.
If you check the status again,
You can see ssh is allowed.
You can read more about settings of UFW in its man page.
I believe 99% of users can stop here, because UFW will be more than enough for them.
But if you want some hard core Linux experience, you can try to configure and use iptables.
Iptables iptables are not easy to understand.
Honestly, I tried to use iptables many times on my system, and I always come back to UFW.
You need to read a lot to understand how iptables works and how to configure it for your needs.
For example, this is the iptables process flow.
Quite complicated, isn't it?
Without going to deep, I will just say that for beginners it is important to know that
Input is a chain is used to control the behavior for incoming connections.
This is where you mostly deny connections.
Output is a chain used for outgoing connections.
This is used to access internet website, so you mostly keep it open.
There is also a forward chain.
Unless you're doing some kind of routing, or something else on your system that requires
forwarding, you won't even use this chain.
So, to keep things simple I will show you only Simple stateful firewall configuration
I learned from Arch Linux wiki I believe it is a good start to learn iptables.
First create necessary chains
Next, if you use Arch Linux enable iptables in systemctl, so it starts with your system.
To keep this video short, I have copied all these commands to a shell script iptables_ArchLinux.sh.
You can download it from the description.
I will make it executable
and run it.
It will implement all these rules.
You can go to this Arch Wiki page and read about them.
Now, a Simple stateful firewall is configured.
-------------------------------------------
★ARIEES★ I need to fly to where it's summer, I'm need a tan 😝 #instatopfashion - Duration: 2:28.
★ARIEES★ I need to fly to where it's summer, I'm need a tan 😝 #instatopfashion
Model plus Fashion tips Plus size model Plus size fashion plus size Curvy model value fashion Street fashion Fashion model Fashion Bbw instatop fashion Blog Celeb Celebs Celebs fashion Celebs style Curve Curves Fashion blogger Fashion designer fashion nova Fashion plus
-------------------------------------------
I just wanted to upload this. I need help. - Duration: 1:01.
For more infomation >> I just wanted to upload this. I need help. - Duration: 1:01. -------------------------------------------
I need more goals and assists – Alex Iwobi - Duration: 1:54.
Alex Iwobi acknowledges he must improve his goal and assist tally for Arsenal. The Nigeria has seen an improvement in attack this season, having been directly involved in ten goals
But that still hasn't stopped criticism for his performances and Iwobi knows he must improve
"I'd like to say I've been involved in a few goals this season, even it's not the assist or the goal, I've been getting a few pre-assists which go unnoticed
But at the end of the day as long as the team does well, that's my main concern," Iwobi told club website
"I would say each day I'm still growing and still learning, but negatives, obviously they're always going to criticise me for my goals and assists, which I need to add to my game if I want to be compared with the people I'm playing with
"The main thing is just to remain calm. We've even been doing some mental work to remain calm under pressure and calm when I'm on the pitch, and this is something I've been working on, not just in football but also off the pitch as well
"Now I've done it I look back and it wasn't easy, especially with the things I had to go through, so I can always say it's going to be hard, but the rewards are definitely worth it
"All I know is that playing for Arsenal to me is always going to be an honour. I'm always proud to represent this club and wear the badge
" Loading.
Không có nhận xét nào:
Đăng nhận xét