Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

15K
active users

mstdn.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

#firewall

11 posts11 participants0 posts today
Public
C.

Q: So, anything new? What'd you do today?

A: Oh, dug through menus in a new AV receiver to find its MAC addresses, configured my network DHCP server to give it a static address, and then wrote some iptables rules to keep that address from being able to reach outside the LAN. Pretty standard stuff.

Looking for a "DO NOT CONNECT THIS MACHINE TO THE INTERNET NO MATTER HOW MUCH IT NAGS" warning sign to print out.

#dystopia#spying#telemetry
Public *
nigel
I was trying to use iptables decided that life is too short for this hobbyist to go down that path, so installed ufw and saw there was an XMPP app profile when doing ufw app list.

Brilliant, this should be easy then!
WRONG.

This is what ufw app info XMPP gave:

Profile: XMPP
Title: XMPP Chat
Description: XMPP protocol (Jabber and Google Talk)

Ports:
  5222/tcp
  5269/tcp
Which is um... not many ports. And naturally broke things like image uploading.

So I wrote my own in a new file at /etc/ufw/applications.d/ufw-prosody like this:

[Prosody]
title=Prosody XMPP
description=Prosody XMPP Server ports per https://prosody.im/doc/ports
ports=5000,5222,5223,5269,5270,5281/tcp
Which after saving, doing ufw app update Prosody,
then ufw app info Prosody now gives:

Profile: Prosody
Title: Prosody XMPP
Description: Prosody XMPP Server ports per https://prosody.im/doc/ports

Ports:
  5000,5222,5223,5269,5270,5281/tcp
ufw allow Prosody to apply (allow) the rules and all is well again.

❤️
#XMPP #Prosody #ufw #iptables #firewall
Public
Rad Web Hosting

How to Configure Additional #Firewall Rules on Rocky Linux VPS

This article provides a guide for how to configure additional firewall rules on Rocky Linux VPS for improved #security of your system.
How to Configure Additional Firewall Rules on Rocky Linux VPS
This tutorial will guide you through the process of configuring additional firewall rules on a Rocky Linux VPS using firewalld. #Firewalld is ...
Continued 👉 blog.radwebhosting.com/how-to- #rockylinux #sshcommands #vpsguide #serverhardening

How to Configure Additional Firewall Rules on Rocky Linux VPS
RadWeb, LLC · How To Configure Additional Firewall Rules On Rocky Linux VPS - VPS Hosting Blog | Dedicated Servers | Reseller HostingThis article provides a guide for how to configure additional firewall rules on Rocky Linux VPS for improved security of your system.
Public *
r1w1s1
Comparing firewall syntax for SSH (port 22) with default-deny:
================================================

#iptables (Linux)
iptables -A INPUT -p tcp --dport 22 -j ACCEPT
iptables -P INPUT DROP

#nftables (Linux)
nft add rule inet my_filter input tcp dport 22 accept
nft add rule inet my_filter input drop

#ufw (Linux - simplified frontend to iptables)
ufw allow 22/tcp
ufw default deny incoming

#pf (OpenBSD)
pass in proto tcp to port 22
block all

pf’s syntax feels so elegant, human-readable, & minimal!

After 20years scripting iptables, I’m ready to try UFW on my laptop.
#firewall #sysadmin #pf #iptables #ufw #nftables
Public
DeadSwitch @ T0m's 1T C4fe

Automating UFW Configuration with Ansible: Locking Down the Digital Fortress #Ansible #UFW #Firewall #Automation #Cybersecurity #ServerSecurity #DeadSwitch #OperationalSecurity #AnsiblePlaybook #NetworkSecurity #AutomationTools #AnsibleRoles #SystemAdministration #SecureServer #Encryption #AnsibleVault #PrivacyTools #SecurityAutomation

tomsitcafe.com/2025/04/16/auto

Tom's IT Cafe · Automating UFW Configuration with Ansible: Locking Down the Digital FortressIn the world of chaos, where every exposed port is a door for the enemy, DeadSwitch doesn’t just lock the doors—we automate. We create shields that rise without a command. Ansible is our tool of ch…
Public
Rad Web Hosting

Top 5 #Security Features of #Imunify360
Imunify360 is a Linux server security solution designed to safeguard your web-based business against cyber attacks. It includes features like Intrusion Prevention and Detection system, Real-time #Antivirus Protection, Network #Firewall and Patch Management. ...
Continued 👉 blog.radwebhosting.com/top-5-s #businesscontinuance #webapplicationfirewall #hipaacomplianthosting #malwarescanner #malwareremoval #wordpresssecurity #intrusionprevention #intrusiondetection

Top 5 Security Features of Imunify360
RadWeb, LLC · Top 5 Security Features Of Imunify360 - VPS Hosting Blog | Dedicated Servers | Reseller HostingThis software protects your servers from malware, remote exploits and brute force attacks. Additionally, it offers advanced firewall protection with cloud
Public
Ralf-Peter Kleinert

Sicherer Fernzugriff mit pfSense und WireGuard: In meinem Artikel zeige ich dir, wie du Schritt für Schritt einen WireGuard-VPN-Server aufsetzt – inklusive Tunnel-Konfiguration, Peer-Einrichtung und Firewall-Regeln. Ideal für alle, die ihre Netzwerksicherheit erhöhen möchten.

ralf-peter-kleinert.de/linux-s

ralf-peter-kleinert.deWie erstelle ich einen WireGuard-VPN-Tunnel mit pfSense?Erfahren Sie, wie Sie WireGuard auf pfSense einrichten – schnell, sicher und einfach erklärt! Mit Youtube-Tutorial.
#pfSense#WireGuard#VPN
ExploreLive feeds
About