Difference between revisions of "OpenVPN/Firewall"

From Secure Computing Wiki
Jump to: navigation, search
(iptables)
 
(5 intermediate revisions by 4 users not shown)
Line 1: Line 1:
 +
{{OpenVPN_Menu}}
 
Follow these instructions to disable/clear your firewall rulesets for various firewalls.
 
Follow these instructions to disable/clear your firewall rulesets for various firewalls.
  
Line 9: Line 10:
  
 
== iptables ==
 
== iptables ==
 +
This will get you started.  For more in-depth testing, see https://github.com/QueuingKoala/netfilter-samples/tree/master/reset-rules
 +
 +
 
Save a backup of current firewall config
 
Save a backup of current firewall config
 
<pre>iptables-save > ~/fw-backup.ipt</pre>
 
<pre>iptables-save > ~/fw-backup.ipt</pre>

Latest revision as of 06:28, 10 September 2013

OpenVPN Topics

GENERAL: RoutingRIP RoutingBridgingFAQFirewallVPN ChainingHigh-AvailabilityTroubleshootingDonationsIRC meetingsDeveloper DocsTester Docs
OS RELATED: FreeBSD Routed FreeBSD Bridged

Follow these instructions to disable/clear your firewall rulesets for various firewalls.

pf

Disable firewall

pfctl -d

Enable firewall

pfctl -e

iptables

This will get you started. For more in-depth testing, see https://github.com/QueuingKoala/netfilter-samples/tree/master/reset-rules


Save a backup of current firewall config

iptables-save > ~/fw-backup.ipt

Restore a firewall config

iptables-restore < ~/fw-backup.ipt

Completely turn off firewalling

iptables -t nat -P PREROUTING ACCEPT
iptables -t nat -P POSTROUTING ACCEPT
iptables -t nat -P OUTPUT ACCEPT
iptables -t mangle -P INPUT ACCEPT
iptables -t mangle -P OUTPUT ACCEPT
iptables -t mangle -P FORWARD ACCEPT
iptables -t mangle -P PREROUTING ACCEPT
iptables -t mangle -P POSTROUTING ACCEPT
iptables -t filter -P INPUT ACCEPT
iptables -t filter -P OUTPUT ACCEPT
iptables -t filter -P FORWARD ACCEPT
iptables -t nat -F
iptables -t nat -X
iptables -t mangle -F
iptables -t mangle -X
iptables -t filter -F
iptables -t filter -X