Page 1 of 1
firewall setup missing KH 20.1 Build 1928
Posted: Thu 28. May 2020, 16:33
by Zoltan
Hello,
just a fresh install of KeyHelp and firewall setup is missing from the left panel, see screenshot:
http://prntscr.com/sphc1d
20.1 (Build 1928)
What did I wrong?
thank you
Zoltan
Re: firewall setup missing KH 20.1 Build 1928
Posted: Thu 28. May 2020, 16:59
by Alexander
You did nothing wrong.
If you are using Debian 10, than it is normal behavior, due to this feature is not yet present on a KeyHelp-Debian 10 system.
Re: firewall setup missing KH 20.1 Build 1928
Posted: Thu 28. May 2020, 21:55
by Zoltan
thank you!
than how to manage firewall settings?
Anyway what is the most recommended OS for KeyHelp?
Re: firewall setup missing KH 20.1 Build 1928
Posted: Thu 28. May 2020, 23:01
by nikko
I personally use Ubuntu because of the LTS. The firewall settings also work there.
Re: firewall setup missing KH 20.1 Build 1928
Posted: Sat 30. May 2020, 22:53
by prune
I am also using it with Debian 9 currently and Im getting a reminder from Keyhelp to upgrade. So when I upgrade to Debian 10, no firewall? You mean just the firewall UI or firewall UI and firewall itself wont be working?
Re: firewall setup missing KH 20.1 Build 1928
Posted: Sun 31. May 2020, 07:55
by Tobi
No UI.
The firewall is working.
Configurations must be done via cli.
Re: firewall setup missing KH 20.1 Build 1928
Posted: Thu 16. Jul 2020, 03:50
by superrandom
Tobi wrote: ↑Sun 31. May 2020, 07:55
No UI.
The firewall is working.
Configurations must be done via cli.
Shouldn't there be a default config? That isn't applied either, it's a wide open system upon installation of KH.
Code: Select all
# iptables -nvL
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
322K 37M f2b-sshd tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 22
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain f2b-sshd (1 references)
pkts bytes target prot opt in out source destination
316K 37M RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
root@miami:~# lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description: Debian GNU/Linux 10 (buster)
Release: 10
Codename: buster
Maybe posting on the main site that it's Debian 10 compatible should be reconsidered? A debian 10 system is really wide open. Not sure where it goes wrong but the rules are there in /home/keyhelp/www/keyhelp/install/templates/iptables. I'd say that's worrisome given the regular control panel user (generally not so versed in fw setup).