Date post: | 14-Apr-2018 |
Category: |
Documents |
Upload: | rifqi-multazam |
View: | 223 times |
Download: | 0 times |
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 1/9
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 2/9
SECUGENIUS SECURITY SOLUTIONS
--------------------------------------------------------------------------------------
(A UNIT OF HARKSH TECHNOLOGIES PVT. LTD)
Company Profile:
Secugenius Security Solutions is a Student Entrepreneurial Company started by 2 Social Student
Entrepreneurs in 2010 with an aim to make our country Cyber Crime Free. We at SECUGENIUS
are headquartered at Ludhiana, the Manchester of Punjab. The main activities of Secugenius
Security Solutions are providing training in Information Security and various professional courses.
Secugenius Security Solutions is an organization which believes in inventing and implementing newideas to influence the technological minds of the youngsters
Looking at the number of Cyber Crimes since last many years, We at Secugenius Security
Solutions provides training on Ethical hacking & Cyber Security to students, IT Professionals, Bank
Employees, Police officials.
Secugenius conducts workshops in all parts of the country in various Colleges/institutions for the
benefit of the students & making them aware of the latest trends in technological era of the
Computer age. We believe in spreading knowledge to all the youngsters & growing minds of the
nation so that they could serve the nation with perfect skill-sets in the field of Cyber Crime
Investigation & Forensic Sciences
Secugenius provides various security solutions to its clients by securing their websites from cyber
attacks. We provide training to college students, graduates and professionals in various fields.
Education is delivered to students through two modes i.e. Regular mode and Distance mode which
are available as short term and long term courses.
In the workshops conducted by Secugenius, participants can claim to be trained by the highly
experienced & skilled corporate trainers from different parts of the nation. We believe in making
the base of students to be as strong as possible. All the modules have been designed in order to
provide students with specialized knowledge by specialized trainers.
This library was furnished, managed and funded by the Founders and Directors of Secugenius
Er. Harpreet Khattar & Er. Kshitij Adhlakha. The overall resource person for the content of
the series of this Digital Library is Er. Chetan Soni - Sr. Security Specialist, Secugenius Security
Solutions.
This Online Digital Library has been initiated as a free resource & permanent
resource on specialization basis for every student of Team Secugenius.
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 3/9
Advanced Policy Firewall in Backtrack OS
Product ID No: SG/ODL/13025
Founder & Director: Harpreet Khattar & Kshitij Adhlakha
Resource Person: Chetan Soni
Secugenius Security Solutions
SCO-13A, Model Town Extn, Near Krishna Mandir,
Ludhiana-141002, Punjab – India
[email protected], [email protected]
www.secugenius.com , www.seculabs.in
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 4/9
What is Advanced Policy Firewall?
Advanced Policy Firewall (APF) is an iptables (netfilter) based firewall systemdesigned around the essential needs of today’s Linux servers.
The configuration is designed to be very informative and easy to follow. Themanagement on a day-to-day basis is conducted from the command linewith the ‘apf’ command, which includes detailed usage information on allthe features.
APF is developed and maintained by R-fx Networks.
The technical side of APF is such that it utilizes the latest stable featuresfrom the iptables (netfilter) project to provide a very robust and powerfulfirewall. The filtering performed by APF is three fold:
1) Static rule based policies (not to be confused with a “static firewall”)
2) Connection based stateful policies
3) Sanity based policies
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 5/9
Step 1 –
Download the advanced policy firewall package from Rfxnetworks website bytyping this command,
root@bt:~# wget http://rfxnetworks.com/downloads/apf-current.tar.gz
Step 2 –
Make a New Directory “apf ” in / root Directory,
Step 3 –
Now Copy the downloaded Package from /root directory to /apf directoryby typing this command,
root@bt:~# cp –rf /root/apf-current.tar.gz /apf/
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 6/9
Step 4 –
Now extract all files from the tar package by typing this command,
root@bt:~# tar – xvzf apf-current.tar.gz
Step 5 –
Now type “cd apf-9.7-2/” to change the directory,
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 7/9
Step 6 –
Run the Install File by typing this command “./install.sh”
You will receive a message saying it has been installedInstalling APF 0.9.5-1: Completed.
Step 7 –
Edit the configuration file of this apf by typing this command,
root@bt:~# vi /etc/apf/conf.apf
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 8/9
Step 8 –
Append this line at the top of the file,USE_DS=”1”
Step 9 –
Now configuring ingress (inbound) and egress (outbond) TCP and UDP Portsas shown below,
7/29/2019 Seculabs eBook - Advanced Policy Firewall in Backtrack
http://slidepdf.com/reader/full/seculabs-ebook-advanced-policy-firewall-in-backtrack 9/9
Save your file by typing this command - First Press Escape and Type “:wq!”
Step 10 –
Now Starting the firewall by typing this command,
root@bt:~# /usr/local/sbin/apf –s