Skip to content

Technology Documentation

Firewall

Technology Documentation

INFO
Linux
Linux
- INFO
- Core Commands
- Distros
  Distros
  - Distros
- Editors
  Editors
  - Vim
- File System
  File System
- GUI
  GUI
  - GUI
  - Hyprland
- Monitoring
  Monitoring
  - Disk
  - Firewall Firewall
    Table of contents
    
    Ports
    
    Scan with SS (Inspection Tool)
    
    Example
    
    TCP (-t = TCP)
    
    Scan all ports with nmap
    
    Add/Remove port with ufw (Uncomplicated Firewall)
    
    Add port
    
    Remove port
    
    Enable & Check Status
    
    Enable/Disable with Firewall-cmd (BETA)
  - I/O
  - Load Average
  - Processes
  - RAM
- Shell
  Shell
- Storage
  Storage
  - Disk Imaging
    Disk Imaging
    
    Write ISO to USB
- System
  System
  - Boot
  - Kernel
  - Services
  - User
- Text Processing
  Text Processing
  - AWK
  - Cut
  - JQ
  - Regex
  - SED
  - Text Filtering
- Utilities
  Utilities
  - Archive
  - HTTP CRUD
  - Math
  - Time
Git
Git
- INFO
- Clone
  Clone
- Commands
  Commands
  - Bisect
  - Branch
  - Checkout
  - Default Commands
  - Diff
  - Log
  - Status ui
  - Remote Repository
  - Stash
- Concepts
  Concepts
CI-CD
CI-CD
- INFO
- Jenkins
  Jenkins
  - Features
  - Jenkins CLI
  - Job DSL
  - Pipeline Demo
  - Plugins
  - Slave Node
- Argo
  Argo
Containerization
Containerization
- Docker
  Docker
AI
AI
- INFO
- Fundamentals
  Fundamentals
- Coding with AI
  Coding with AI
  - CLI
  - Process Flow
Agile
Agile
- INFO
Kubernetes
Kubernetes
- INFO
- Getting Started
  Getting Started
  - History
  - Introduction
- Setup
  Setup
- Concepts
  Concepts
- Workloads
  Workloads
  - ReplicaSet
  - Deployment
  - Service
  - Volume
  - Config Map
  - Secrets
  - ingress
- Helm
  Helm
- EKS
- Logging
  Logging
  - Different Logging
  - Lens
- Cheat Sheet
Cybersecurity
Cybersecurity
- INFO
- Threat Landscape
IDE
IDE
- INFO
- VS Code
Computer Science
Computer Science
- Data Representation
  Data Representation
Systems Integration
Systems Integration
- Middleware
  Middleware
  - INFO
  - Message Broker
    Message Broker
    
    Rabbit MQ
Networking
Networking
- INFO
- OSI
- IP
- Linux Commands
- HTTPS/TLS
Windows
Windows
- Audit
- Variables
- Archive
- Get Command
Cloud
Cloud
- INFO
- Concepts
  Concepts
  - Deployment Models
  - Service Models
- AWS
  AWS
  - INFO
  - CLI Commands
  - CLI Setup
  - CloudWatch
  - EC2
  - SSH Setup
- Azure
  Azure
  - INFO
  - Create VM
  - Logs
- GCP
  GCP
  - INFO
  - VM
IAC
IAC
- INFO
Monitoring
Monitoring
- INFO
Backend
Backend
- INFO
Frontend
Frontend
- INFO
- Grid
- Bootstrap

Firewall

Is a system that filters incoming and outgoing network trafic based on rules

Ports

Scan with SS (Inspection Tool)

input:

ss <flags>

output:

Netid State   Recv-Q  Send-Q  Local Address:Port    Peer Address:Port
...

Netid:
- shows network protocol type
- Example:
  - tcp
  - tcp6
  - udp
State:
- socket state
- Example:
  - LISTEN
  - CLOSED
  - ESTAB
    - established connection
Recv-Q
- amount of revieved bytes in queue
Send-Q
- amount of bytes sent but not but acknowledgment (ACK) not recieved from remote peer (ps output: Peer Address:Port).
Local Address:Port
- Local endpoint / IP on host machine
Peer Address:Port
- Remote endpoint / IP on client machine

Example

Scan for port 22 (SSH):

ss -tuln | grep ':22'

Netid State   Recv-Q  Send-Q  Local Address:Port    Peer Address:Port
tcp   LISTEN  0       128     0.0.0.0:22            0.0.0.0:*
tcp   LISTEN  0       128     [::]:22               [::]:*

TCP (`-t` = TCP)

ss -t

Scan all ports with nmap

nmap localhost

Add/Remove port with `ufw` (Uncomplicated Firewall)

Add port

ufw allow 22

Remove port

ufw deny 22

Enable & Check Status

ufw enable
ufw status

Enable/Disable with Firewall-cmd (BETA)

Work in progress here. More coming soon...