niemueller.de::home niemueller.de
Open Software. Open Knowledge.




 
Last modified December 08 2008 17:37:49
IPchains Configuration Webmin Module
IPchains Configuration Webmin Module
Configure IPchains via a web interface
Introduction
This module creates a shell script containing all calls for ipchains. You can modify the chains and the rules in these chains. All changes are written to the script, which must then be executed (possible within the module). The module can import the current system settings so that you can migrate from other tools very easy and do not need to build up the complete firewall a second time.
The current version offers three different operation modes:
  • Newbie: Select one from 5 predefined security levels. This will activate a predefined ruleset. There are two different sets of rulesets, one for a Personal Firewall and one for a Router Firewall
  • Template: Select from a big list of protocols and directions which traffic should be allowed to pass through the firewall
  • Expert: This mode is the original one. You can define the settings for each rule in detail and change everything
Try it out and send me reports via email!

Very Frequently Asked Question
Question: Will there be an iptables module?
Answer: It's out. Get it here
Important Changes
0.80.5
  • Added support for Newbie and Template Mode
  • Several Additions and changes to the expert mode, now really ready for a production environment
  • Usual bug fixes
Installation
The installation is quite simple: Login to your Webmin as admin (or whatever you called the adminstrative user) and go to the Webmin tab, then choose "Webmin Configuration". Now click on "Webmin Modules". Give the file in the first box (you can choose any installation method, all should work). Hit Install. Now the module is being installed.
Configuration
The first time the module starts the module will ask you a few questions. Depending on your system this may be one of the following:
Location of boot files
This defines where your firewall script should be put in order to be made a script, which is executed on system bootup.
Script File Location
Define where the module should create the firewall script. This file should not exist until you complete the setup the first time. It will be created so that it works just fine with the firewall module. The default is BOOTDIR/firewall.
Definition of interfaces
The Newbie and Template modes need to know which of your interfaces is the internal one (connected to your LAN) and the external one (connected to the Internet or your WAN). If you do not have any items available in the drop down lists then your system is not supported by the Network Configuration Module. You can correct this by going to the module configuration and defining with a comma separated list which interfaces you have (for example "lo,eth0,eth1") at the line saying "Network Interfaces" at the very bottom of the page.
External is DHCP Client?
The module could not determine whether your external interface runs DHCP or not. If you choose "Yes" then some special hacks will be enabled which will determine the external IP whenever the firewall script is run. A paranoiac may consider this unsecure.

Wow, you are now in the module. The firewall should be "Disabled". You can now either switch to one of the predefined security levels or customize your setup (which is template mode) or go to the module configuration and set your system to "Expert" mode for the real ipchains experience ;-)

That's it.
Support
If you have any bugs please send me an email and tell me about. If you have any problems with download or installation of the module, please first read the Download and Install FAQ and the IPchains FAQ.
Download
It's a gzipped TAR file with an .wbm.gz-extension. (It's distributed under GPL)

Latest Version is 0.83.1
Download ipchains-0.83.1.wbm.gz (93432 Bytes)

If you have any problems first read the Download and Install FAQ and then email me.




Top 5 Pages
Wiki
WebLog
SquidGuard Webmin Module
Onager
Link Pile




Palm Software
UniMatrix UniMensa UniSorter
UniChat OHS Mobile Onager


My Bookshelf




Valid XHTML 1.1!

RSS Copyright © 2000-2009 by Tim Niemueller