WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

RE: [Xen-users] Firewall rules

To: "Xen-users@xxxxxxxxxxxxxxxxxxx" <Xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] Firewall rules
From: Nathan Eisenberg <nathan@xxxxxxxxxxxxxxxx>
Date: Tue, 24 Aug 2010 22:05:58 +0000
Accept-language: en-US
Cc:
Delivery-date: Tue, 24 Aug 2010 15:07:40 -0700
Dkim-signature: v=1; a=rsa-sha1; c=simple; d=atlasnetworks.us; s=key2; l=511; t=1282687580; x=1283292380; q=dns/txt; h=DomainKey-Signature: Received:Received:From:To:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:Content-Type:Content-Transfer-Encoding: MIME-Version; bh=u74C1TAdoc4qxVgMFMmx1AHRPY4=; b=ATzWPdyAtIkfxLA nCmjqJiK+rjLwS7ZbuYc5cQqQTTNLfBMHsqDZw54v+GfoYnfM1IlIUYZkVcoxkfb IJnm2Z/UF/ZTJrOuN7BpkOp2eY1abrj9HdBEbcT9VnW0nQxyHaa5yIuqhR/RNSQ9 XChbG9HHIpXE1/Dp4OLik2bhDil0=
Domainkey-signature: a=rsa-sha1; s=key2; d=atlasnetworks.us; c=nofws; q=dns; h=from:message-id; b=JHDZRoAB/yEXyqatHJhnVT6ozY3sHLAaA1uddHiWiTFOEJPr6IM8P3jAT/Up VoRcqHHWTvbLNxj3iN5nZgPOgo7Eex1uH7QcJ5JrWpcpsB163ucg6IWVG pJ/JjBGW1H86gIerm0MBu6ucTetoaPKUSAnCOnb0tZvKOR8qD01WCc=;
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <4C74353F.7070300@xxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4C74353F.7070300@xxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AQHLQ9DfLqIcHXlumU6pNoW95CJKgZLxJwhA
Thread-topic: [Xen-users] Firewall rules
> Hi Everyone,
> 
> For all the folk here on this list that offer VPS hosting, do you guys just 
> give a
> VPS to a customer in a non-firewalled state?
> 
> Cheers
> 

It's not really specific to XEN, but at $datacenterjob, we deploy servers with 
the host firewall blocking everything except for ICMP-PING, and SSH or RDP.  
Typically, fail2ban is also installed on linux servers to kill off the lazy 
bruteforcers.  Lastly, we drop the netbios ports using ACLs at our border 
routers.


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

<Prev in Thread] Current Thread [Next in Thread>