OpenVZ Forum: Support » *SOLVED* HN NAT Security

Home » General » Support » *SOLVED* HN NAT Security

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

*SOLVED* HN NAT Security [message #14711]

Sat, 07 July 2007 02:48

aar365
Messages: 8
Registered: May 2006

Junior Member

Hi All,

can you suggest some security measures on the Hardware Node, which enabled NAT?

OS: CentOS 5
Kernel: 2.6.18-8.1.4.el5.028stab035.1
NAT: forward HN port 80 to Internal VE

Seems the default firewall was removed after NAT setup. What should I do to secure the HN? Is it safe enough?

Thanks for help in advance!

[Updated on: Wed, 11 July 2007 10:00] by Moderator

Report message to a moderator

Re: HN NAT Security [message #14728 is a reply to message #14711]

Mon, 09 July 2007 09:48

dev
Messages: 1693
Registered: September 2005
Location: Moscow

Senior Member

Seems the default firewall was removed after NAT setup

This makes me believe you use some kind of tool for configuring your firewall/NAT. Am I correct?
Why have you decided that default firewall was removed?

plz provide exactl firewall settings *before* and *after* NAT setup using
# iptables -L
# iptables -L -t nat
commands

http://static.openvz.org/userbars/openvz-developer.png

Report message to a moderator

Re: HN NAT Security [message #14731 is a reply to message #14711]

Mon, 09 July 2007 10:02

n00b_admin
Messages: 77
Registered: July 2006
Location: Romania

Member

I also do nat on a server and my firewall is open... (i mean i don't block any incoming connections).

I don't see where's the security problem as long as you don't run any services on the HN itself which is not recommended anyway.

Report message to a moderator

Previous Topic:	SOLVED /dev/pts support in VE
Next Topic:	Help needed w/ vz networking: What terminology am I looking for?

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Wed Jun 25 13:50:07 GMT 2025

Total time taken to generate the page: 0.03331 seconds