Firewall issues

Dear,

I am having a problem setting up the firewall (CentOS 6)

I found this page:
http://help.directadmin.com/item.php?id=71

And i fount this page:
https://wiki.centos.org/HowTos/Network/IPTables

Well, i can't get it right so it works.

COMMAND: service iptables stop
Then everything works.

But with firewall ON nothing works. Except SSH login.

Can anyone give me the right command to setup the firewall?

Thank you !

Install CSF Firewall and most of the rules are applied automatically:

http://download.configserver.com/csf/install.txt

I managed to do this and it seems to be working.

Thank you!

Should i also install fail2ban? And how do i do that? (I have heard about it)

I installed the server yesterday and already getting a los of brute force detections.
How can i get rid of this?

User Login Failures
root 8778

Fail2ban is more of an alternative to CSF, but CSF is better.

About this brute force
- They're normal (you're not specially targeted), but you should watch out for them

- You could disable root login from ssh ( how to here ), you would have to login through another user and 'su' to root.

- You could close port 22, so no one outside the CSF whitelist can login into SSH. You need to add your own IP address to the CSF allow list so you can still login.
+ To do this, add your IP-address to csf.allow, located under the button 'Firewall Allow IPs', if it hasn't added your IP already on installation.
+ Remove 22 from TCP_IN/TCP_OUT, and TCP6_IN if you got IPv6.

Please try to understand everything before you do something, else you might end up locking yourself out of your box.

i understand it.

Thank you!

No need to install fail2ban since CSF has packed login failure daemon for that purpose (lfd service).