APF (Advanced Policy Firewall) is a firewall that works with iptables utility.
This package is suitable firewall configured on the Linux server to work with high activity.
APF was built by R-fx Networks with http://www.rfxnetworks.com/apf.php site address
The following article will present how to perform the installation APF on Linux servers.
Meanwhile, here are required root access
login to your server and follow these steps:
1. mkdir / root / download; cd / root / download
2. wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz
3. tar-xvzf APF-current.tar.gz
4. cd APF-0.9.5-1 / or adjusted with the downloaded version.
5. eksesuki file:. / install.sh
you will see the report as follows:
Installing APF 0.9.5-1: Completed.
Installation Details:
Install path: / etc / APF /
Config path: / etc / APF / conf.apf
Executable path: / usr / local / sbin / APF
AntiDos install path: / etc / APF / ad /
AntiDos config path: / etc / APF / ad / conf.antidos
DShield Client Parser: / etc / APF / extras / dshield /
Other Details:
Listening TCP ports: 1,21,22,25,53,80,110,111,143,443,465,993,995,2082,2083,2086,2087,2095,2096,3306
Listening UDP ports: 53.55880
Note: These ports are not auto-configured; they are simply presented for information purposes.You must manually configure all port options.
OK, the installation was done, our lives configure APF
6. vi / etc / APF / conf.apf
If you are still confused with this configuration, please read the README in the package APF.
we will use DShield.org 's "block" list to address the most frequent activity occurs in a network environment.
Search: USE_DS = "0"
Fox with: USE_DS = "1"
7. Selanjutkan we configure Port of Firewall:
For servers that use Cpanel:
Setting Port of entry into the server:
# Common ingress (inbound) TCP ports-3000_3500 = passive port ranges for pure ftpd
IG_TCP_CPORTS = "21,22,25,53,80,110,143,443,2082,2083, 2086.2087, 2095, 2096.3000 _3500"
#
# Common ingress (inbound) UDP ports
IG_UDP_CPORTS = "53"
Port Setting out Server:
# Egress filtering [0 = Disabled / 1 = Enabled]
EGF = "1"
# Common egress (outbound) TCP ports
EG_TCP_CPORTS = "21,25,80,443,43,2089"
#
# Common egress (outbound) UDP ports
EG_UDP_CPORTS = "20,21,53"
Press ESC 2 times and type: wq
Setting For enzyme Server:
This setting has not my test, blm pernah pake sih Exim, heheheh
Setting the incoming server port:
# Common ingress (inbound) TCP ports
IG_TCP_CPORTS = "21,22,25,53,80,110,143,443,19638"
#
# Common ingress (inbound) UDP ports
IG_UDP_CPORTS = "53"
Popular Posts
-
Deep Freeze 6.61 Features Full Windows 7 Compatibility Faronics announce that Deep Freeze 6.61 , the latest version of their flagship syste... -
How to Access and Internet Connection FREE Either way ato is still not fit but did not try yesterday there are some who still have a road a...
-
The film is basically characterized by a number called the ISO number. ISO stands for International Standards Organization. Once we know... -
Tips & Trik Windows 7 Mempercepat Proses Shutdown Windows 7 * Klik Start > ketikkan regedit > enter. * Buka HKEY-LOCAL_MAC...
-
Make a photo model and character image can be called successful if the photographer managed to communicate ideas in his mind to... -
Bet On Markets is the easy way to profit by predicting forex, indices, stocks and commodities Predict a market's movement in the ne... -
Here are new sets of reseters shared to us by another member "e2500e". Many thanks to you guys who are very supportive and generou...
-
Its use must be powered down, as most people do not have time to maintain a sound. Most people can easily afford to fly RC helicopters due t...
