Post A2hVYICP6KoGgpc2oS by mmezo@fosstodon.org
 (DIR) More posts by mmezo@fosstodon.org
 (DIR) Post #A2fqnuKb5mMiY3yJhw by iooioio@fosstodon.org
       2020-12-28T22:41:47Z
       
       0 likes, 0 repeats
       
       So #fediverse, what's the best way to go about configuring a #firewall on a #vps? Is there an established fallback mechanism or a way to prevent you from locking yourself out?Thanks in advance for the replies and boosts! 🙏 Also: #ansible suggestions preferred.#selfhosting
       
 (DIR) Post #A2frFrCiJQmGxSbzWK by funnylookinhat@fosstodon.org
       2020-12-28T22:46:50Z
       
       0 likes, 0 repeats
       
       @iooioio I use ufw - it has a bunch of built in rules to make configuration easy.  All I did was add a deny all and then an accept for SSH and mosh to get started .
       
 (DIR) Post #A2fz36f0Kmi2lPH8kK by utahcon@fosstodon.org
       2020-12-29T00:14:02Z
       
       0 likes, 0 repeats
       
       @iooioio I use ansible to configure iptables
       
 (DIR) Post #A2hVYICP6KoGgpc2oS by mmezo@fosstodon.org
       2020-12-29T17:53:05Z
       
       0 likes, 0 repeats
       
       @iooioioFirewalld is more or less standard in redhat/centos and is also available in Ubuntu and Debian. It is also supported directly by ansible with its own module.
       
 (DIR) Post #A3q9b7oJO8uTQJulii by yngmar@social.tchncs.de
       2021-02-01T19:52:04Z
       
       0 likes, 0 repeats
       
       @iooioio Use the VPS control panel firewall, rather than one on the guest OS for a start. At least for basic access rules.And don't forget fail2ban on SSH and whatever service you might be running there.