docs: update linux/linux-firewall
This commit is contained in:
Norsotec
@@ -2,7 +2,7 @@
|
|||||||
title: Firewall Linux
|
title: Firewall Linux
|
||||||
description: Firewall Konfiguration unter Linux
|
description: Firewall Konfiguration unter Linux
|
||||||
published: true
|
published: true
|
||||||
date: 2026-03-16T00:20:01.180Z
|
date: 2026-03-16T00:24:10.718Z
|
||||||
tags: firewall, linux
|
tags: firewall, linux
|
||||||
editor: markdown
|
editor: markdown
|
||||||
dateCreated: 2026-03-15T23:56:44.726Z
|
dateCreated: 2026-03-15T23:56:44.726Z
|
||||||
@@ -44,12 +44,21 @@ Die Maschine neustarten und danach prüfen:
|
|||||||
sudo ufw status numbered
|
sudo ufw status numbered
|
||||||
```
|
```
|
||||||
## Empfehlungen Firewall Einstellungen
|
## Empfehlungen Firewall Einstellungen
|
||||||
1) SSH Bruteforce Schutz
|
1) Default Policies setzen (sehr wichtig)
|
||||||
|
```bash
|
||||||
|
sudo ufw default deny incoming
|
||||||
|
sudo ufw default allow outgoing
|
||||||
|
```
|
||||||
|
2) SSH Bruteforce Schutz
|
||||||
```bash
|
```bash
|
||||||
ufw limit 22/tcp
|
ufw limit 22/tcp
|
||||||
```
|
```
|
||||||
2) Das blockiert automatisch IPs bei Login-Angriffen
|
3) Das blockiert automatisch IPs bei Login-Angriffen
|
||||||
```bash
|
```bash
|
||||||
apt install fail2ban
|
apt install fail2ban
|
||||||
```
|
```
|
||||||
|
4) Logging vom default low zu medium erhöhen
|
||||||
|
```bash
|
||||||
|
sudo ufw logging medium
|
||||||
|
```
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user