Helix Firewall

From Pleskforge

Jump to: navigation, search

Purpose of this article is to explain how to install Helix Firewall script that works with asl and plesk.

What this firewall will do:

1) DDoS Connection flood mitigation 2) General ingress filtering 3) General /proc hardening 4) General Anti-Spoofing measures

What is left to do:

1) Egress filtering 2) RPM package 3) Multiple IPs

You can download the two files at: http://downloads.helixdevelopment.com/archive/firewall/helix1_asl/asl-firewall.sh http://downloads.helixdevelopment.com/archive/firewall/helix1_asl/ipfw.sh

Install instructions:

1) Download both files and stick them in /etc/rc.d/init.d/ 

  Note: you will have to replace the asl-firewall.sh that is there. I recommend backing it up and using the one above. Also note the .sh are dropped off the file names.

2) Now you are going to need to edit the ipfw config blow is a list of variables that will need to be edited in order to make it work. 

  1) # Current hostname
     HOSTNAME=yourname.com

  2) # Current host ip
     HOSTIP=xxx.xxx.xxx.xxx

  3) # White list
     WHITE_LIST=xxx.xxx.xxx.xxx

3) You will need to restart the box to make this work 100% as the /proc hardening will get denied by the asl kernel otherwise.

Retrieved from "http://www.pleskforge.net/index.php/Helix_Firewall"
Personal tools