I read that firewalls do not always work well in a virtual environment;
I would say that it is untrue.
To protect VPS server, every web host have their security patches so there is no issue whether firewall is installed or not. In terms of extra security you should opt software firewall on your VPS account.
Depends on the firewall and the kernel you're using, but most software firewalls will operate just fine on a VPS server as long as you select the right options.
Some firewalls had issues using monolithic kernels but almost all software firewalls out there have instructions for the particular OS you're running.
The two that I use daily are APF/BFD and CSF/LFD
These work without any issue on a VPS machine. These are software firewalls.
Consider securing your PHP, this is a must on a VPS, it can be attacked a lot easier and there are more ways to break into a VPS, so it is a must to secure it.
Consider securing your PHP, this is a must on a VPS, it can be attacked a lot easier and there are more ways to break into a VPS, so it is a must to secure it.
Other then compromising the host node, how do you feel there are more ways?
__________________ Hostigation.com - High Resource Hosting
WHM/cPanel Servers for Hosting and Dedicated Needs
SolusVM VPS Hosting - cPanel/DirectAdmin
Like us on Facebook and watch for coupons
Depends on the virtualization
xen/KVM no issues (as long as you install iptables & associated modules as needed) you the user control this so there is no issue
Open VZ some issues and if the host does not set up the node correctly
Virtuozzo some minor issues if using the old UBC instead of SLM and again if the host does not set up the node correctly
OpenVZ is a filebase virtualization and the firewall setting in fact most depends on the host node compare to Xen VPS which is more isolated environment, so it shouldn't have any issue.
It shouldn't have any issue, as mentioned CSF would work great as well!
__________________
█ » VPSLatch - We put the 'M' in Managed VPS Hosting!
█ Offering fully managed VPS with cPanel/WHM! • 24/7/365 around the clock superb support • Proactive Monitoring
As someone who specializes in VPS security is our main concern. We take a proactive approach and we actually try and find vulnerabilities, sometimes we do and we resolve them and look for more. It is a computer and no matter what someone out there is going to look for openings in your security and they will exploit them if they can.
But as mentioned above VPS servers give you great flexibility to try things. Remember ask questions, have fun experiment you might learn something.
__________________ HostHOP.com - Specializing in gigabit VPS hosting, including Windows and Linux/*NIX.
Follow us on Facebook
The only problem you you might have with Virtuozo is a incompatability with ip_conntrack which will affect your ftp clients with the firewall up, but you can configure FTP to use a range of ports, which you can configure the firewall to allow.
Firewall is just another step to increase security, but it does not secure your vps/dedicated server 100%. You should take further steps and install RootKit Hunter, secure ssh, etc. There are many guides just google.
New Post
Old Post
