1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
|
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head>
<meta http-equiv="X-UA-Compatible" content="IE=7"/>
<title>Set up your personal firewall</title><meta name="generator" content="DocBook XSL-NS Stylesheets V1.75.2"/><link rel="home" href="index.html" title="Mageia Control Center"/><link rel="up" href="mcc-security.html" title="Security"/><link rel="prev" href="msecgui.html" title="MSEC: System Security and Audit"/><link rel="next" href="draksec.html" title="Configure authentication for Mageia tools"/><meta http-equiv="Content-Type" content="text/html; charset=utf-8"/><script type="text/javascript">
//The id for tree cookie
var treeCookieId = "treeview-4208";
var language = "en";
var w = new Object();
//Localization
txt_filesfound = 'Results';
txt_enter_at_least_1_char = "You must enter at least one character.";
txt_browser_not_supported = "Your browser is not supported. Use of Mozilla Firefox is recommended.";
txt_please_wait = "Please wait. Search in progress...";
txt_results_for = "Results for: ";
txt_no_results_for = "Your search returned no results for ";
</script><style type="text/css">
input {
margin-bottom: 5px;
margin-top: 2px;
}
.folder {
display: block;
height: 22px;
padding-left: 20px;
background: transparent url(../common/jquery/treeview/images/folder.gif) 0 0px no-repeat;
}
</style><link rel="shortcut icon" href="favicon.png" type="image/x-icon"/><link rel="stylesheet" type="text/css" href="../common/css/positioning.css"/><link rel="stylesheet" type="text/css" href="../common/jquery/theme-redmond/jquery-ui-1.8.2.custom.css"/><link rel="stylesheet" type="text/css" href="../common/jquery/treeview/jquery.treeview.css"/><link rel="stylesheet" type="text/css" href="webhelp-default.css"/><link rel="stylesheet" type="text/css" href="webhelp-custom.css"/><script type="text/javascript" src="../common/jquery/jquery-1.4.2.min.js"><!----></script><script type="text/javascript" src="../common/jquery/jquery-ui-1.8.2.custom.min.js"><!----></script><script type="text/javascript" src="../common/jquery/jquery.cookie.js"><!----></script><script type="text/javascript" src="../common/jquery/treeview/jquery.treeview.min.js"><!----></script><script type="text/javascript" src="search/htmlFileList.js"><!----></script><script type="text/javascript" src="search/htmlFileInfoList.js"><!----></script><script type="text/javascript" src="nwSearchFnt.js"><!----></script><script type="text/javascript" src="search/stemmers/en_stemmer.js"><!--//make this scalable to other languages as well.--></script><script type="text/javascript" src="search/index-1.js"><!----></script><script type="text/javascript" src="search/index-2.js"><!----></script><script type="text/javascript" src="search/index-3.js"><!----></script></head><body><div xmlns="" id="header"><div id="navheader"><!----><table><tr><td style="height: 28px; width: 16px;"><a id="showHideButton" onclick="showHideToc();" class="pointLeft" title="Hide TOC tree">.
</a></td><td><img src="../common/images/highlight-blue.gif" alt="H" height="25px" onclick="toggleHighlight()" id="showHideHighlight" style="cursor:pointer" title="Toggle search result highlighting"/></td><td><a accesskey="p" href="msecgui.html">Prev</a>
|
<a accesskey="u" href="mcc-security.html">Up</a>
|
<a accesskey="n" href="draksec.html">Next</a></td></tr></table></div><div id="headerlogo"><img src="t-mageia-2011.png" alt="Company Logo"/></div><h1 id="pagetitle">Set up your personal firewall<br/>Security</h1></div><div id="content"><!----><div xml:lang="" class="section" title="Set up your personal firewall"><div class="titlepage"><div><div><h3 class="title"><a id="drakfirewall"><!----></a>Set up your personal firewall</h3></div><div><h2 class="subtitle">drakfirewall</h2></div></div></div><div class="mediaobject" align="center"><img src="images/drakfirewall.png" align="middle"/></div><p>This tool is found under the Security tab in the Mageia Control Center
labelled "Set up your personal firewall". it is the same tool in the first
tab of "Configure system security, permissions and audit"</p><p>A basic firewall is installed by default with Mageia. All the
incoming connections from the outside are blocked if they aren't authorised.
In the first screen above, you can select the services for which outside
connection attempts are accepted. For your security, uncheck the first box
- <span class="guilabel">Everything (no firewall)</span> - unless you want to disable
the firewall, and only check the needed services.</p><p>It is possible to manually enter the port numbers to open. Click on
<span class="guibutton">Advanced</span> and a new window is opened. In the field
<span class="guilabel">Other ports</span>, enter the needed ports following these
examples :</p><p>80/tcp : open the port 80 tcp protocol</p><p>24000:24010/udp : open all the ports from 24000 to 24010 udp
protocol</p><p>The listed ports should be separated by a space.</p><p>If the box <span class="guilabel">Log firewall messages in system logs</span>
is checked, the firewall messages will be saved in system logs</p><div class="mediaobject"><img src="images/drakfirewall2.png"/></div><div class="note" title="Note" style="margin-left: 0.5in; margin-right: 0.5in;"><h3 class="title">Note</h3><p>If you don't host specific services (web or mail server, file
sharing, ...) it is completely possible to have nothing checked at all, it
is even recommended, it won't prevent you from connecting to the
internet.</p></div><p>The next screen deals with the Interactive Firewall options. These
feature allow you to be warned of connection attempts if at least the first box
<span class="guilabel">Use Interactive Firewall </span>is checked. Check the second
box to be warned if the ports are scanned (in order to find a failure
somewhere and enter your machine). Each box from the third one onwards corresponds to
a port you opened in the two first screens; in the screenshot below, there are
two such boxes: SSH server and 80:150/tcp. Check them to be warned each time
a connection is attempted on those ports.</p><p>These warning are given by alert popups through the network
applet.</p><div class="mediaobject"><img src="images/drakfirewall3.png"/></div><div class="mediaobject"><img src="images/drakfirewall4.png"/></div><p>In the last screen, choose which network interfaces are
connected to the Internet and must be protected. Once the OK button is
clicked, the necessary packages are downloaded. </p><div class="tip" title="Tip" style="margin-left: 0.5in; margin-right: 0.5in;"><h3 class="title">Tip</h3><p> If you don't know what to choose, have a look in MCC tab Network
& Internet, icon Set up a new network interface. </p></div><p>You can start this tool from the command line, by typing <span class="bold"><strong>drakfirewall</strong></span> as root.</p></div><script type="text/javascript" src="main.js"><!----></script><div class="navfooter"><hr/><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="msecgui.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="mcc-security.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="draksec.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top"> </td><td width="20%" align="center"><a accesskey="h" href="index.html">Home</a></td><td width="40%" align="right" valign="top"> </td></tr></table></div></div><div><div id="leftnavigation"><div id="tabs"><ul><li><a href="#treeDiv"><em>Contents</em></a></li><li><a href="#searchDiv"><em>Search</em></a></li></ul><div id="treeDiv"><img src="../common/images/loading.gif" alt="loading table of contents..." id="tocLoading" style="display:block;"/><div id="ulTreeDiv" style="display:none"><ul id="tree" class="filetree"><li><span class="file section"><a href="mcc-intro.html">About the Manual for the Mageia Control Center</a></span></li><li><span class="file section"><a href="software-management.html">Software Management</a></span><ul><li><span class="file section"><a href="rpmdrake.html">Software Management (Install and Remove
Software)</a></span><ul><li><span class="file section"><a href="rpmdrake.html#rpmdrake-introduction">Introduction to rpmdrake</a></span></li><li><span class="file section"><a href="rpmdrake.html#d4e54">The main parts of the screen</a></span></li><li><span class="file section"><a href="rpmdrake.html#d4e92">The status column</a></span></li><li><span class="file section"><a href="rpmdrake.html#d4e145">The dependencies</a></span></li></ul></li><li><span class="file section"><a href="MageiaUpdate.html">Software Packages Update</a></span></li><li><span class="file section"><a href="mgaapplet-config.html">Configure updates frequency</a></span></li><li><span class="file section"><a href="drakrpm-edit-media.html">Configure Media</a></span><ul><li><span class="file section"><a href="drakrpm-edit-media.html#d4e215">The columns</a></span></li><li><span class="file section"><a href="drakrpm-edit-media.html#d4e247">The buttons on the
right</a></span></li><li><span class="file section"><a href="drakrpm-edit-media.html#d4e261">The menu</a></span></li></ul></li></ul></li><li><span class="file section"><a href="mcc-hardware.html">Hardware</a></span><ul><li><span class="file section"><a href="harddrake2.html">Hardware configuration</a></span><ul><li><span class="file section"><a href="harddrake2.html#d4e368">The window</a></span></li><li><span class="file section"><a href="harddrake2.html#d4e383">The menu</a></span></li></ul></li><li><span class="file section"><a href="draksound.html">Sound Configuration</a></span></li><li><span class="file section"><a href="drak3d.html">3D Desktop Effects</a></span><ul><li><span class="file section"><a href="drak3d.html#d4e433">Introduction</a></span></li><li><span class="file section"><a href="drak3d.html#d4e437">Getting Started</a></span></li><li><span class="file section"><a href="drak3d.html#d4e451">Troubleshooting</a></span><ul><li><span class="file section"><a href="drak3d.html#d4e453">Can't See Desktop after Logging in</a></span></li></ul></li></ul></li><li><span class="file section"><a href="XFdrake.html">Set up the graphical server</a></span></li><li><span class="file section"><a href="keyboarddrake.html">Set up the Keyboard Layout</a></span><ul><li><span class="file section"><a href="keyboarddrake.html#d4e542">Introduction</a></span></li><li><span class="file section"><a href="keyboarddrake.html#d4e546">Keyboard Layout</a></span></li><li><span class="file section"><a href="keyboarddrake.html#d4e549">Keyboard Type</a></span></li></ul></li><li><span class="file section"><a href="mousedrake.html">Set up the pointer device (mouse,
touchpad)</a></span></li><li><span class="file section"><a href="system-config-printer.html">Install and configure a
printer</a></span><ul><li><span class="file section"><a href="system-config-printer.html#introduction">Introduction</a></span></li><li><span class="file section"><a href="system-config-printer.html#automatic">Automatically detected printer</a></span></li><li><span class="file section"><a href="system-config-printer.html#non_automatic">No automatically detected printer</a></span></li><li><span class="file section"><a href="system-config-printer.html#terminate">Complete the installation process</a></span></li><li><span class="file section"><a href="system-config-printer.html#network_printer">Network printer</a></span></li><li><span class="file section"><a href="system-config-printer.html#network_printing_protocols">Network printing protocols</a></span></li><li><span class="file section"><a href="system-config-printer.html#properties">Device Properties</a></span></li><li><span class="file section"><a href="system-config-printer.html#d4e685">Troubleshoot</a></span></li><li><span class="file section"><a href="system-config-printer.html#specificities">Specifics</a></span></li></ul></li><li><span class="file section"><a href="scannerdrake.html">Set up scanner</a></span><ul><li><span class="file section"><a href="scannerdrake.html#scannerinstallation">Installation</a></span></li><li><span class="file section"><a href="scannerdrake.html#scannersharing">Scannersharing</a></span></li><li><span class="file section"><a href="scannerdrake.html#scannerspecifics">Specifics</a></span></li><li><span class="file section"><a href="scannerdrake.html#scannerextrasteps">Extra installation steps</a></span></li></ul></li><li><span class="file section"><a href="drakups.html">Set up a UPS for power monitoring</a></span></li></ul></li><li><span class="file section"><a href="mcc-network.html">Network and Internet</a></span><ul><li><span class="file section"><a href="draknetcenter.html">Network Center</a></span><ul><li><span class="file section"><a href="draknetcenter.html#d4e908">Introduction</a></span></li><li><span class="file section"><a href="draknetcenter.html#d4e938">The Monitor button</a></span></li><li><span class="file section"><a href="draknetcenter.html#d4e949">The Configure button</a></span></li><li><span class="file section"><a href="draknetcenter.html#d4e1008">The Advanced Settings button</a></span></li></ul></li><li><span class="file section"><a href="drakconnect.html">Set up a new network interface (LAN, ISDN,
ADSL, ...)</a></span><ul><li><span class="file section"><a href="drakconnect.html#d4e1027">Introduction</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1031">A new Wired connection (Ethernet)</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1085">A new Satellite connection (DVB)</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1089">A new Cable modem connection</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1147">A new DSL connection</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1183">A new ISDN connection</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1233">A new Wireless connection (WiFi)</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1315">A new GPRS/Edge/3G connection</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1341">A new Bluetooth Dial-Up Networking connection</a></span></li><li><span class="file section"><a href="drakconnect.html#d4e1345">A new Analog telephone modem connection (POTS)</a></span></li><li><span class="file section"><a href="drakconnect.html#drakconnect-end">Ending the configuration</a></span></li></ul></li><li><span class="file section"><a href="drakconnect--del.html">Remove a connection</a></span></li><li><span class="file section"><a href="drakproxy.html">Proxy</a></span></li><li><span class="file section"><a href="drakgw.html">Share the Internet connection with other local
machines</a></span><ul><li><span class="file section"><a href="drakgw.html#drakgw-principles">Principles</a></span></li><li><span class="file section"><a href="drakgw.html#drakgw-wizard">Gateway wizard</a></span></li><li><span class="file section"><a href="drakgw.html#drakgw-configure">Configure the client</a></span></li><li><span class="file section"><a href="drakgw.html#drakgw-stop">Stop connection sharing</a></span></li></ul></li><li><span class="file section"><a href="draknetprofile.html">Manage different network profiles</a></span></li><li><span class="file section"><a href="drakvpn.html">Configure VPN Connection to secure network
access</a></span><ul><li><span class="file section"><a href="drakvpn.html#d4e1521">Introduction</a></span></li><li><span class="file section"><a href="drakvpn.html#d4e1527">Configuration</a></span></li></ul></li><li><span class="file section"><a href="drakhosts.html">Hosts definitions</a></span></li></ul></li><li><span class="file section"><a href="mcc-system.html">System</a></span><ul><li><span class="file section"><a href="drakauth.html">Authentication</a></span></li><li><span class="file section"><a href="drakxservices.html">Manage system services by enabling or disabling them</a></span></li><li><span class="file section"><a href="drakfont.html">Manage, add and remove fonts. Import
Windows(TM) fonts</a></span></li><li><span class="file section"><a href="drakclock.html">Manage date and time</a></span></li><li><span class="file section"><a href="localedrake.html">Manage localization for your
system</a></span><ul><li><span class="file section"><a href="localedrake.html#input_method">Input method</a></span></li></ul></li><li><span class="file section"><a href="logdrake.html">View and search system logs</a></span><ul><li><span class="file section"><a href="logdrake.html#d4e1733">To do a search in the logs</a></span></li><li><span class="file section"><a href="logdrake.html#d4e1748">To configure a mail alert</a></span></li><li><span class="file section"><a href="logdrake.html#d4e1782">Command line</a></span></li></ul></li><li><span class="file section"><a href="drakconsole.html">Open a console as administrator</a></span></li><li><span class="file section"><a href="userdrake.html">Users and Groups</a></span></li><li><span class="file section"><a href="transfugdrake.html">Import Windows(TM) documents and settings</a></span></li><li><span class="file section"><a href="draksnapshot-config.html">Snapshots</a></span></li></ul></li><li><span class="file section"><a href="mcc-networksharing.html">Network Sharing</a></span><ul><li><span class="file section"><a href="diskdrake--smb.html">Access Windows (SMB) shared drives and
directories</a></span><ul><li><span class="file section"><a href="diskdrake--smb.html#d4e1937">Introduction</a></span></li><li><span class="file section"><a href="diskdrake--smb.html#d4e1942">Procedure</a></span></li></ul></li><li><span class="file section"><a href="draksambashare.html">Share directories and drives with
Samba</a></span><ul><li><span class="file section"><a href="draksambashare.html#d4e1978">Introduction</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e1981">Preparation</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e1987">Wizard - Standalone server</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e2030">Wizard - Primary domain controller</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e2040">Declare a directory to share</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e2053">Menu entries</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e2069">Printers share</a></span></li><li><span class="file section"><a href="draksambashare.html#d4e2076">Samba users</a></span></li></ul></li><li><span class="file section"><a href="diskdrake--nfs.html">Access NFS shared drives and
directories</a></span><ul><li><span class="file section"><a href="diskdrake--nfs.html#d4e2093">Introduction</a></span></li><li><span class="file section"><a href="diskdrake--nfs.html#d4e2099">Procedure</a></span></li></ul></li><li><span class="file section"><a href="draknfs.html">Share drives and directories using NFS</a></span><ul><li><span class="file section"><a href="draknfs.html#d4e2133">Prerequisites</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2142">Main window</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2146">Modify entry</a></span><ul><li><span class="file section"><a href="draknfs.html#d4e2153">NFS Directory</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2157">Host access</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2169">User ID Mapping</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2179">Advanced options</a></span></li></ul></li><li><span class="file section"><a href="draknfs.html#d4e2189">Menu entries</a></span><ul><li><span class="file section"><a href="draknfs.html#d4e2195">File|Write conf</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2198">NFS Server|Restart</a></span></li><li><span class="file section"><a href="draknfs.html#d4e2201">NFS Server|Reload</a></span></li></ul></li></ul></li><li><span class="file section"><a href="diskdrake--dav.html">Access WebDAV shared drives and
directories</a></span></li></ul></li><li><span class="file section"><a href="mcc-localdisks.html">Local disks</a></span><ul><li><span class="file section"><a href="drakdisk.html">Manage disk partitions</a></span></li><li><span class="file section"><a href="diskdrake--removable.html">CD/DVD burner</a></span></li><li><span class="file section"><a href="diskdrake--fileshare.html">Share your hard disk
partitions</a></span></li></ul></li><li><span class="file section"><a href="mcc-security.html">Security</a></span><ul><li><span class="file section"><a href="msecgui.html">MSEC: System Security and Audit</a></span></li><li id="webhelp-currentid"><span class="file section"><a href="drakfirewall.html">Set up your personal firewall</a></span></li><li><span class="file section"><a href="draksec.html">Configure authentication for Mageia
tools</a></span></li><li><span class="file section"><a href="drakinvictus.html">Advanced setup for network interfaces and firewall</a></span></li><li><span class="file section"><a href="drakguard.html">Parental Controls</a></span></li></ul></li><li><span class="file section"><a href="mcc-boot.html">Boot</a></span><ul><li><span class="file section"><a href="drakboot.html">Set up autologin to automatically log
in</a></span></li><li><span class="file section"><a href="drakboot--boot.html">Set up boot system</a></span></li><li><span class="file section"><a href="drakedm.html">Set up display manager</a></span></li></ul></li></ul></div></div><div id="searchDiv"><div id="search"><form onsubmit="Verifie(ditaSearch_Form);return false" name="ditaSearch_Form" class="searchForm"><fieldset class="searchFieldSet"><legend>Search</legend><center><input id="textToSearch" name="textToSearch" type="text" class="searchText"/> <input onclick="Verifie(ditaSearch_Form)" type="button" class="searchButton" value="Go" id="doSearch"/></center></fieldset></form></div><div id="searchResults"><center/></div></div></div></div></div></body></html>
|
