Opensuse 13.1 yast Firewall whitelist

Zorlaris · February 23, 2016, 11:42pm

Hi Everyone

I am looking for some help in configuring the yast firewall in opensuse 13.1 to be whitelist only (except for a few ports that I need open to everyone )

The situation I currently have is we have just migrated to a data center virtual server from a physical server that was in our office.
When it was hosted in our office we had a mikrotik firewall in front of the server and had a white list configured so that the mikrotik only let through the connections on certain ports from certain ip addresses save for a few ports we needed for remote access.
I am just wondering how to replicate that in the yast firewall

I have tried doing a google search but it has not shone any light on the issue

Any advice you can share would be great (even if it is using another firewall program)

Thanks HEAPS
Zorlaris

Zorlaris · February 24, 2016, 2:49am

Shortly After Posting this I found out how I can achieve my goal

I ended up installing webadmin (http://www.webmin.com/) and configuring the input filter rule to block by default and then added the IP’s and ports that I wanted

Pitfalls
You need to add in an accept rule for 127.0.0.1 and localhost or else it will block your DB or any local services
Also need to add in an accept rule for ESTABLISHED and RELATE connection states or else the webadmin will freeze up (in the ui it is called exisiting or related to existing)

Thanks HEAPS
Zorlaris