Get Paid to Participate - up to $1 per post!     Twitter     Facebook     Google+
Hosting Discussion
 

forgot password?



Reply


Old
  Post #1 (permalink)   12-17-2010, 11:43 AM
HD Amateur
 
Join Date: Dec 2010
Posts: 50

Status: rocketgirl is offline
I read that firewalls do not always work well in a virtual environment; how can that be true? If it is, how do you protect a VPS server?
 
 
 


Old
  Post #2 (permalink)   12-21-2010, 03:31 AM
HD Master
 
Join Date: Oct 2010
Posts: 379

Status: paullopez is offline
Quote:
I read that firewalls do not always work well in a virtual environment;
I would say that it is untrue.

To protect VPS server, every web host have their security patches so there is no issue whether firewall is installed or not. In terms of extra security you should opt software firewall on your VPS account.
__________________
bodHOST.com : Follow us on Twitter | FaceBook | Google+ | Linkedin
 
 
 


Old
  Post #3 (permalink)   12-21-2010, 04:32 PM
HD Wizard
 
Join Date: Mar 2005
Location: Atlanta, GA
Posts: 2,264

Status: handsonhosting is offline
Depends on the firewall and the kernel you're using, but most software firewalls will operate just fine on a VPS server as long as you select the right options.

Some firewalls had issues using monolithic kernels but almost all software firewalls out there have instructions for the particular OS you're running.

The two that I use daily are APF/BFD and CSF/LFD

These work without any issue on a VPS machine. These are software firewalls.
__________________
Emerson Nogueira
http://www.HandsOnWebHosting.com
cPanel Web Hosting, Domain Registration, Managed VPS Servers
 
 
 


Old
  Post #4 (permalink)   12-24-2010, 10:05 PM
HD Amateur
 
Join Date: Jul 2010
Posts: 67

Status: CrocWeb is offline
CSF/LFD should not have any issues and is recommended.
 
 
 


Old
  Post #5 (permalink)   12-25-2010, 01:54 AM
HD Guru
 
Join Date: Apr 2009
Location: Sheffield, UK.
Posts: 574

Status: HostOX is offline
CSF/LDF Should be fine.

Consider securing your PHP, this is a must on a VPS, it can be attacked a lot easier and there are more ways to break into a VPS, so it is a must to secure it.
 
 
 


Old
  Post #6 (permalink)   12-25-2010, 07:22 PM
HD Amateur
 
Join Date: Apr 2008
Location: SC, USA
Posts: 59

Status: Hostigation is offline
Quote:
Originally Posted by Paul0130 View Post
Consider securing your PHP, this is a must on a VPS, it can be attacked a lot easier and there are more ways to break into a VPS, so it is a must to secure it.
Other then compromising the host node, how do you feel there are more ways?
__________________
Hostigation.com - High Resource Hosting
WHM/cPanel Servers for Hosting and Dedicated Needs
SolusVM VPS Hosting - cPanel/DirectAdmin
Like us on Facebook and watch for coupons
 
 
 


Old
  Post #7 (permalink)   12-25-2010, 09:55 PM
HD Master
 
Join Date: Dec 2005
Posts: 358
Send a message via AIM to lowesthost

Status: lowesthost is offline
Depends on the virtualization
xen/KVM no issues (as long as you install iptables & associated modules as needed) you the user control this so there is no issue

Open VZ some issues and if the host does not set up the node correctly
Virtuozzo some minor issues if using the old UBC instead of SLM and again if the host does not set up the node correctly

but overall firewalls should run just fine
__________________
Lowest Host/Empire Technology LLC
Offering Quality Shared, Reseller, VPS servers, and Dedicated Servers
24x7 Tech Support http://empire-hosting.net
cPanel Licenses http://empire-hosting.net/buy-cpanel.html - Dedicated VPS /
 
 
 


Old
  Post #8 (permalink)   12-31-2010, 02:25 AM
HD Addict
 
Join Date: May 2007
Location: MY
Posts: 108
Send a message via Skype™ to jeff-ay

Status: jeff-ay is offline
OpenVZ is a filebase virtualization and the firewall setting in fact most depends on the host node compare to Xen VPS which is more isolated environment, so it shouldn't have any issue.
__________________
ControlVM Technology
Business Hosted PBX Reliable Xen VPS :: Serving Customer From More Than 30 Countries.
VPS Hosting in the USA ● Germany ● Malaysia ● Singapore and now available in Hong Kong!
 
 
 


Old
  Post #9 (permalink)   01-04-2011, 08:51 AM
HD Addict
 
Join Date: Dec 2010
Posts: 244

Status: AJKpeter is offline
Yes, it depends on virtual machine installed, but mostly it's ok
 
 
 


Old
  Post #10 (permalink)   01-16-2011, 09:11 PM
HD Newbie
 
Join Date: Sep 2010
Location: California
Posts: 39
Send a message via AIM to VL-Adam Send a message via MSN to VL-Adam

Status: VL-Adam is offline
It shouldn't have any issue, as mentioned CSF would work great as well!
__________________
VPSLatch - We put the 'M' in Managed VPS Hosting!
Offering fully managed VPS with cPanel/WHM! 24/7/365 around the clock superb support Proactive Monitoring
 
 
 


Old
  Post #11 (permalink)   01-17-2011, 08:08 AM
HD Newbie
 
Join Date: Dec 2010
Posts: 34

Status: hosthop is offline
As someone who specializes in VPS security is our main concern. We take a proactive approach and we actually try and find vulnerabilities, sometimes we do and we resolve them and look for more. It is a computer and no matter what someone out there is going to look for openings in your security and they will exploit them if they can.

But as mentioned above VPS servers give you great flexibility to try things. Remember ask questions, have fun experiment you might learn something.
__________________
HostHOP.com - Specializing in gigabit VPS hosting, including Windows and Linux/*NIX.
Follow us on Facebook
 
 
 


Old
  Post #12 (permalink)   01-17-2011, 04:38 PM
HD Community Advisor
 
ughosting's Avatar
 
Join Date: Jan 2011
Location: London
Posts: 608

Status: ughosting is offline
The only problem you you might have with Virtuozo is a incompatability with ip_conntrack which will affect your ftp clients with the firewall up, but you can configure FTP to use a range of ports, which you can configure the firewall to allow.
__________________
DDoS Protected, LiteSpeed + LiteMage on CloudLinux with SSD Disks, R1Soft, Softaculous, SIteBuilder, BitNinja, LetsEncypt & Patchman
UnixGuru: Accounts with 1-16 CPU Cores, 2-32GB RAM. Why use a VPS?
█ Choose from Shared, Reseller and Elastic-Sites Hosting
 
 
 


Old
  Post #13 (permalink)   01-18-2011, 03:02 AM
HD Amateur
 
Join Date: Jul 2010
Posts: 67

Status: CrocWeb is offline
Firewall is just another step to increase security, but it does not secure your vps/dedicated server 100%. You should take further steps and install RootKit Hunter, secure ssh, etc. There are many guides just google.
 
 
 


Old
  Post #14 (permalink)   01-27-2011, 02:37 PM
HD Amateur
 
Join Date: Jan 2011
Location: Jacksonville, FL
Posts: 66

Status: Dedi.cated.IT is offline
Running a firewall should be an issue unless your VPS provider has not configured the host node correctly.

To run a firewall in a VPS you need to have certain modules loaded on the host node.

Here is some good info on it from CSF forums
http://forum.configserver.com/viewtopic.php?t=212
http://forum.configserver.com/viewto...84&postcount=6
 
 
 


Old
  Post #15 (permalink)   01-27-2011, 09:03 PM
HD Newbie
 
Join Date: Jan 2011
Location: Ashburn VA
Posts: 29

Status: Bitcable is offline
Firewalls should be fine on any server, dedicated or VPS.

As others have suggested, CSF is highly recommended. I can't say anything higher than that it is used on all of our servers.
 
 
 
Reply
Previous Thread Next Thread


Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By: