Larry Smith Jr.

Larry Smith Jr.

Doing my thang with #automation #DevOps and cloudy things! Providing hopefully valuable content for others to consume easily and also learn from.

Shorewall firewall quick install video

less than 1 minute read

Installing shorewall firewall on Ubuntu 12.04 for a simple single network configuration.

sudo nano /etc/network/interfaces

assumption is that eth0 is your internet facing interface using dhcp
add the following

iface auto eth1
address 192.168.2.2
netmask 255.255.255.0

sudo apt-get install shorewall
sudo nano /etc/default/shorewall

change startup=0 to startup=1

sudo nano /etc/shorewall/shorewall.conf

change STARTUP_ENABLED=No to STARTUP_ENABLED=Yes

sudo cp /usr/share/doc/shorewall/default-config/* /etc/shorewall/
sudo nano /etc/shorewall/zones

fw firewall
net ipv4
loc ipv4

sudo nano /etc/shorewall/interfaces
net eth0 detect dhcp,routefilter,norfc1918,logmartians,nosmurfs,tcpflags
loc eth1 detect tcpflags
sudo nano /etc/shorewall/policy
net all DROP info
loc all ACCEPT
fw all ACCEPT
# Last Policy rule. Must be last
all all REJECT info

sudo nano /etc/rules

** There are no firewall rules in this as the default rule for the local network is to accept all outgoing traffic.**

sudo nano /etc/shorewall/masq
eth0 eth1

sudo touch /var/log/messages

https://youtu.be/ZbjKMJQq6Z0

Updated:

Leave a comment

You may also enjoy

NFD24 - DriveNets


2 minute read

Recently I had the privilege to attend NFD 24 in which DriveNets presented. I had never heard of them until this event. Which I am shaming myself for because...

Ubuntu 20.04 - cloud-init Gotchas


1 minute read

Recently while working on my latest Packer Templates I ran into an issue with Ubuntu 20.04. The issue was related to cloud-init not being able to grow the ro...