KeyHelp Community

Das offizielle KeyHelp Forum der Keyweb AG / The official KeyHelp forum of Keyweb AG
https://community.keyhelp.de/

firewall setup missing KH 20.1 Build 1928

https://community.keyhelp.de/viewtopic.php?t=9567

Page 1 of 1

firewall setup missing KH 20.1 Build 1928

Posted: Thu 28. May 2020, 16:33
by Zoltan
Hello,

just a fresh install of KeyHelp and firewall setup is missing from the left panel, see screenshot:
http://prntscr.com/sphc1d
20.1 (Build 1928)

What did I wrong?

thank you

Zoltan

Re: firewall setup missing KH 20.1 Build 1928

Posted: Thu 28. May 2020, 16:59
by Alexander
You did nothing wrong.
If you are using Debian 10, than it is normal behavior, due to this feature is not yet present on a KeyHelp-Debian 10 system.

Re: firewall setup missing KH 20.1 Build 1928

Posted: Thu 28. May 2020, 21:55
by Zoltan
thank you!

than how to manage firewall settings?

Anyway what is the most recommended OS for KeyHelp?

Re: firewall setup missing KH 20.1 Build 1928

Posted: Thu 28. May 2020, 23:01
by nikko
I personally use Ubuntu because of the LTS. The firewall settings also work there.

Re: firewall setup missing KH 20.1 Build 1928

Posted: Sat 30. May 2020, 22:53
by prune
I am also using it with Debian 9 currently and Im getting a reminder from Keyhelp to upgrade. So when I upgrade to Debian 10, no firewall? You mean just the firewall UI or firewall UI and firewall itself wont be working?

Re: firewall setup missing KH 20.1 Build 1928

Posted: Sun 31. May 2020, 07:55
by Tobi
No UI.
The firewall is working.
Configurations must be done via cli.

Re: firewall setup missing KH 20.1 Build 1928

Posted: Thu 16. Jul 2020, 03:50
by superrandom
Tobi wrote: Sun 31. May 2020, 07:55 No UI.
The firewall is working.
Configurations must be done via cli.
Shouldn't there be a default config? That isn't applied either, it's a wide open system upon installation of KH.

Code: Select all

# iptables -nvL
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
 322K   37M f2b-sshd   tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 22

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain f2b-sshd (1 references)
 pkts bytes target     prot opt in     out     source               destination
 316K   37M RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0
root@miami:~# lsb_release -a
No LSB modules are available.
Distributor ID:	Debian
Description:	Debian GNU/Linux 10 (buster)
Release:	10
Codename:	buster

Maybe posting on the main site that it's Debian 10 compatible should be reconsidered? A debian 10 system is really wide open. Not sure where it goes wrong but the rules are there in /home/keyhelp/www/keyhelp/install/templates/iptables. I'd say that's worrisome given the regular control panel user (generally not so versed in fw setup).
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited