Closed

Configure csf firewall in Proxmox

We have a Proxmox 3.1 server working perfectly (debian) and want to install csf firewall (with its IDS) so we can protect the host node without interfering the traffic of the VMs. We also want to use some features like lock some countries in csf (very easy) to the node and also to the VMs if possible.

We readed that we should add this lines to /etc/csf/[url removed, login to view]:

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

iptables -A FORWARD -d [url removed, login to view] -j ACCEPT

But when we enable csf connectivity to VMs doesn't work and the ping breaks, this is the network config (IPs are modified):

auto lo

iface lo inet loopback

# device: eth0

auto eth0

iface eth0 inet static

address [url removed, login to view]

netmask [url removed, login to view]

pointopoint [url removed, login to view]

gateway [url removed, login to view]

# for single IPs

auto vmbr0

iface vmbr0 inet static

address [url removed, login to view]

netmask [url removed, login to view]

bridge_ports none

bridge_stp off

bridge_fd 0

up ip route add [url removed, login to view] dev vmbr0

# for a subnet

auto vmbr1

iface vmbr1 inet static

address [url removed, login to view]

netmask [url removed, login to view]

bridge_ports none

bridge_stp off

bridge_fd 0

Virtualization we are using is KVM mainly, the network is routed with subnet..

This is a fast task for an expert.

We will require the list of commants used or a text indicating what has been done, so we can apply this config to another server.

Thanks

Skills: Linux, Script Install, Software Architecture, Web Hosting

See more: what is virtualization, kvm virtualization, t sh, loopback, linux firewall, kvm, iptables, firewall, csf, csf proxmox, firewall debian, route software, architecture linux server, csf proxmox host, csf debian, csf configure, proxmox csf firewall, csf proxmox host firewall, linux install node, iptables add, debian linux expert install, iptables forward server, software protect, linux auto install, proxmox vmbr1

About the Employer:
( 0 reviews ) Peru

Project ID: #6470968

6 freelancers are bidding on average $85 for this job

linuxfreak1985

Dear Customer, this is Yaseen, and i am glad to work for you project, We specialise in Linux Unix VirtualMin Cpanel and Asterisk. I have read the project description and i assure you 100% quality and timely response to More

$84 USD in 1 day
(404 Reviews)
7.6
izghitu

Hi, I am a highly experienced sysadmin with more than 8 years of experience. Working with csf on a daily basis Please let me know if you are interested

$93 USD in 3 days
(405 Reviews)
7.0
linuxwarm

Hi, I am dealing with Technical Support, Server Maintenance, Helpdesk Support and 24x7 webhosting support. We are handling total of 83 remote servers (65 Linux and 18 windows servers). We are handling more than 50 d More

$88 USD in 1 day
(72 Reviews)
6.1
b4rni

Hi I can resolve Your problem with csf and Proxmox - I have done it before. I`m expert in the linux and has also strong experience with Proxmox. RHCE Cert passed. Ready to resolve Your problem. Best Regards M More

$111 USD in 1 day
(15 Reviews)
4.7
vw2180478vw

Hello Sir, I have noticed that the ip address which you have used in your mentioned iptables rules is wrong. This is the wrong IPv4 144.99.183.323. Please configure the correct IP Address first and i hope it will s More

$83 USD in 1 day
(24 Reviews)
3.8
crusifficadus

Hello, I'm interested to work in this project. but firstly please check your sysctl configuration by doing "sysctl -p" in command line and make sure you've enabled "net.ipv4.ip_forward" (the value should be 1 not 0 More

$50 USD in 1 day
(1 Review)
0.4