After suffering lots of brutal force attacks especially on FTP services, we decided to install some kind of dynamic firewall.It has been tested and its known to work.
This is simple how to that explains how to install a dynamic firewall.
Requirements:
*iptables support in the kernel:
Device Drivers—>Networking Support—>Networking Options—->Network Packet Filtering (replace Ipchains)—>Netfilter Configuration
#emerge -av iptables
Put on some general rules on the firewall /etc/iptables.bak:
#Firewall for Mzalendo Server
*filter
:INPUT ACCEPT [5:952]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [1192099:595387635]
# accept all from localhost
-A INPUT -s 127.0.0.1 -j ACCEPT
# accept all previously established connections
#-A INPUT -m state –state RELATED,ESTABLISHED -j ACCEPT
# permit people to ssh into this computer
-A INPUT -p tcp -m state –state
[...]Endelea hapa “Dynamic Firewall”
Seting up nagios, involves central PC that monitoring software nagios is installed and couple devices that we are monitoring.
In this scenario we 2 computers and 1 router.One computer called gendesktop is the central command center that nagios is installed to monitor itself, router and 1 remote server(fileserver).
Endelea kusoma how to nagios with gentoo
3rd party ebuilds:
Notice:
You might need gcc greate than 4.2 with gcj enabled.
Install overlay using layman, this means downloading the installation files like ebuilds or so.It wasted me hours to figure out.
Notice the experimental overlay arent available on official list, so fast lets add the java-experimental overlay to the list
edit layman.cfg and add the following below the default list:
#
overlays : http://www.gentoo.org/proj/en/overlays/layman-global.txt
file:///usr/portage/local/layman/my-list.txt
Open up a broser http://www.gentoo.org/proj/en/overlays/layman-global.txt
Copy this list, and paste it on /usr/portage/local/layman/my-list.txt, my-list.txt doesnt exist your need to create it.
Add the java-experimental overlay, what i
[...]Endelea hapa “Installing 3rd party on gentoo box”
Installing gentoo on VirtualBox
Host preparations:
Open VirtualBox
-Click new and follow the instructions on the screen.After you have finished, go to cdrom and attacht rescuecd.iso on it.
-Done with creating the guest oss, then click start to boot into the rescuecd.iso.
Instructions (general installation-routine for gentoo)
Please feel free to skip this and use the excellent official handbook.
-Prepare network, net-setup will do.But ping isnt working even though connected to internet.I used to open firefox for the handbook 
-Click start to Boot rescuecd, after the process type “startx” and then gparted to prepare disks.Skip the “startx” if you feel good.
-If you choose
[...]Endelea hapa “Virtual Machine-VirtualBox”
Loading ...
Habari maarufu