Xen project Mailing List

Re: [Xen-users] Firewall rules

To: Nathan Eisenberg <nathan@xxxxxxxxxxxxxxxx>

Date: Wed, 25 Aug 2010 09:12:43 +0200

Cc: "Xen-users@xxxxxxxxxxxxxxxxxxx" <Xen-users@xxxxxxxxxxxxxxxxxxx>

Delivery-date: Wed, 25 Aug 2010 00:14:18 -0700

Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=softdux.com; h=MIME-Version:In-Reply-To:References:From:Date:Message-ID:Subject:To:Cc:Content-Type:Content-Transfer-Encoding:X-Assp-Whitelisted:X-Assp-Envelope-From:X-Assp-Intended-For:X-Source:X-Source-Args:X-Source-Dir; b=itAPGy76FMx61s7Qvn/Mtyt76nhsxOOFTpxIflwHXi07y83sKcWHwg/Ufys5C8Mk2zdl/e+6o4YoTADzrkDMiW24q4tn5o9kvffbr0tH+l+yD8VcIdAfKoXgWI5HwOPA;

List-id: Xen user discussion <xen-users.lists.xensource.com>

On Wed, Aug 25, 2010 at 12:05 AM, Nathan Eisenberg <nathan@xxxxxxxxxxxxxxxx> wrote: > It's not really specific to XEN, but at $datacenterjob, we deploy servers > with the host firewall blocking everything except for ICMP-PING, and SSH or > RDP. Typically, fail2ban is also installed on linux servers to kill off the > lazy bruteforcers. Lastly, we drop the netbios ports using ACLs at our > border routers. > > > _______________________________________________ Nathan, as matter of interest, do you have pre-configured ISO's or something with the firewall already setup, or do you do this manually? And, if it were for a XEN VM, would you do the firewalling on the dom0 host, or the domU guest? -- Kind Regards Rudi Ahlers SoftDux Website: http://www.SoftDux.com Technical Blog: http://Blog.SoftDux.com Office: 087 805 9573 Cell: 082 554 7532 _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.