From 408822ceef6c284561e8eb34052e3886765753d4 Mon Sep 17 00:00:00 2001 From: Papoteur Date: Wed, 21 Sep 2016 08:04:41 +0200 Subject: Adding firewall page. Update English files --- firewall.html | 94 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 94 insertions(+) create mode 100644 firewall.html (limited to 'firewall.html') diff --git a/firewall.html b/firewall.html new file mode 100644 index 0000000..0357533 --- /dev/null +++ b/firewall.html @@ -0,0 +1,94 @@ + + + + + Firewall + + + + + + +
+
+
+
+

Firewall +

+
+
+
+ + + +

This section allows to configure + some simple firewall rules: they determine which type of message from the + Internet will be accepted by the target system. This, in turn, allows the + corresponding services on the system to be accessible from the + Internet. +

+ + +

In the default setting, no button is checked - no service of the + system is accessibly from the network. The "Everything (no + firewall)" button has a particular role: it enables access to all + services of the machine - an option that does not make much sense in the + context of the installer since it would create a totally unprotected system. + Its veritable use is in the context of the Mageia Control Center (which uses + the same GUI layout) for temporarily disabling the entire set of firewall + rules for testing and debugging purposes. +

+ + +

All other checkbuttons are more or less self-explanatory. As an + example, you will check the "CUPS server" button if you want printers on + your machine to be accessible from the network. +

+ + +

Advanced

+ + +

The set of checkbuttons only comprises the most common services. The + "Advanced" button allows to enable messages that correspond to a service for + which no checkbutton exists. The "Advanced" button + opens a window where you can enable a series of services by typing a list of + couples (blank separated) +

+ + +

<port-number>/<protocol>

+ + + + + + + + + +
- <port-number> is the value of the + port assigned to the service you want to enable (e.g. 873 for the RSYNC + service) as defined in RFC-433; +
- <protocol> is one of + TCP or UDP - the internet + protocol that is used by the service. +
+ + +

For instance, the entry for enabling access to the RSYNC service + therefore is 873/tcp. +

+ + +

In case a service is implemented to use both protocols, you specify 2 + couples for the same port. +

+ +
+ + -- cgit v1.2.1