What makes actsupport different?

24/7/365 support coverage, 20+ years in the business, certified techs, ISO 9001:2015 certified for Quality Management System and ISO 27001:2013 certified for Information Security Management System, 100% white label services, multi channel support and many more

Are the technicians certified?

Yes, our technicians are certified in CCNA, MCSE, RHCE, VMware, AWS etc. Our technicians constantly update their knowledge on all emerging technologies to comply with changing dynamics in the industry.

How do I get started with it?

Just fill up the form given on this page and our Business Development Team will get in touch with you and will take it from there.

Will my information be secure?

We are ISO 27001:2013 certified for Information Security Management System and all the data / information of our clients are maintained with confidentiality and are 100 % secure.

How long have you been in business?

Offering Technical Support Services since 2001.

What should I do if I have questions?

If you have questions on the plans and pricing, you can shoot an email to sales@actsupport.com or talk to us at +1 8886660786 or chat with us using the Live Chat option

How soon can you setup the account?

When we have all the required information necessary to start support we are all set to go. This should normally take 24 hours of time.

What if I need to cancel my order?

We have high customer satisfaction rate and so we believe that there will not be any chances for such unfortunate situations. Just in case such a situation arise, you can always write to our customer friendly sales team at sales@actsupport.com or reach us at +1 8886660786 and we would be more than willing to sort it out for you.

How do i know my data is secure on your server?

Being an ISO 27001:2013 (certified for Information Security Management System) firm security is our major concern. We strive to protect and ensure all your data/information is maintained confidentially and 100 % secure.

Do you provide Help desk support?

Yes, Our IT experts provide remote helpdesk support for your own employees or customers with effortless customer support following proper chat etiquette.

How flexible are you in terms of scheduling?

You can choose the time that best suit's you, as we provide 24/7 technical support to meet your needs.

Can we try out your service before sign up a plan?

Of course! we have a free-trial plans for you to examine the eminence of our support from certified professionals.

How fast you can resolve and troubleshoot the errors?

We resolve and troubleshoot error's with a minimum response time of 15 mins and a resolution of 60 mins for Level 1 and Level 2 support. We setup SLAs with our customers detailing priority levels, response and resolution times.

Is it possible to choose a support plan based on my requirements?

We will help you in this, as we can custom make a support plan and pricing based on your support needs so that it would be cost effective for you.

Is it possible to reach you in case of emergency support?

Yes, we would be glad to fix your issues in-case if you run out of tech's and time, as we offer Emergency Support.

Can I get a free trail to check out your service?

Sure, we can do that. After you sign up, we can give you a free trial for 5 days to experience the international standard outsourced support service with No-obligation and No credit card trail offer.

What is your average response time?

Our qualified experts will respond to a technical issue with a minimum response time of 15 mins.

Do you provide any custom plans ?

Yes. You can request for a custom plan to be created, that is optimal as per your requirement. You may also get advantage of special discounts/offers on the custom plans created.

How to continue your service after the free-trial?

After 5 days of trial, you can continue your services by clicking Buy Now in Plans and pricing section and choose the plan that suits you. Please not that you can use the free trail only once.

Do you provide any Discounts?

Our plans and prices are reasonable and we do not provide any discounts in general. We do run promotional offers from time to time which are either emailed or available on social channels.

Which all control plan do you support?

Our certified cPanel technicians support almost all major control panels like CPanel/WHM , Plesk Panel, Plesk Expand, Hsphere, HSPcomplete, Siteutil ,Helm ,Ensim ,DirectAdmin, Hosting Controller and Webmin.

How will I get daily update on the task performed?

You can contact the technicians through chat / email and get updates directly from them. This will be flexible as per your requirement.

Do my clients know if the support is outsourced?

We never let your clients to know that the support is outsourced. The reply that goes to your clients bears the signature that shows your company name. Which is similar to what you would have done if the support team were in your company.

Check Iptables | How to setup a Firewall | Centos 6

Check-Iptables-Firewall-set-up-on-Centos-6

You can use Iptables to secure your Linux server or VPS. With Iptables you can monitor the traffic of your server using tables, which are a set of rules called chains. Iptables is a flexible firewall tool and few tricks and commands could make working with Iptables much easier.

To configure firewall rules for IPv6, you will have to set up the ip6tables service. If you are using CentOS 7, you will need to set up your firewall using firewalld.

Now lets see how to create a simple firewall on a Centos VPS:

Decide the services and ports to open

Once you have choosed the port to be opened, all other unnecessary ports will be blocked.

You are going to leave SSH port open so that you can connect to the VPS remotely:

Let’s say, port 22.

For web traffic open port 80 and 443. To send email, open port 25 (regular SMTP) and 465 (secure SMTP) and to receive open the usual port 110 (POP3) and 995 (secure POP3 port).

Block comman attacks using iptables

You can block common network attacks with the help of iptables; We will discuss few attacks:

-> To block null packets use the below command

iptables -A INPUT -p tcp --tcp-flags ALL NONE -j DROP

-> To reject is a syn-flood attack you can use

iptables -A INPUT -p tcp ! --syn-m state --state NEW -j DROP

Note:

–i : Insert a rule

-A : Append

-j option specifies the target if a rule is matched

-> To block XMAS packets

iptables -A INPUT -p tcp
--tcp-flags ALL ALL -j DROP

The server allocates a large number of resources for this packet, as it requires more processing than the usual packets.

Add selected services

Open the ports for your selected services and start adding to the firewall filter. Let’s start with localhost interface:

iptables -A INPUT -i lo -j ACCEPT

This command tells iptables to add a rule to the incoming filter table (INPUT) and accept (-j ACCEPT) the traffic that comes via the localhost interface.

Next you can allow web server traffic by adding the two ports to ACCEPT the change.

iptables -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT

iptables -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT

Then you can allow users to use your SMTP servers, using:

iptables -A INPUT -p tcp -m tcp --dport 25 -j ACCEPT

iptables -A INPUT -p tcp -m tcp --dport 465 -j ACCEPT

This command will allow users to read email on their server which allow POP3 traffic.

iptables -A INPUT -p tcp -m tcp --dport 110 -j ACCEPT

iptables -A INPUT -p tcp -m tcp --dport 995 -j ACCEPT

Next you can allow IMAP mail protocol:

iptables -A INPUT -p tcp -m tcp --dport 143 -j ACCEPT

iptables -A INPUT -p tcp -m tcp --dport 993 -j ACCEPT

Limiting SSH access

To allow SSH traffic, connect to the VPS remotely by the following command:

iptables -A INPUT -p tcp -m tcp--dport 22 -j ACCEPT

Note: You can change the SSH configuration to a different port if needed.

If you hold a permanent IP address, you can allow connection to SSH and the connection is available only to users around your location.

Once after finding your IP address, you can create the firewall rule to allow traffic to the SSH port and then replace YOUR_IP_ADDRESS with the actual IP.

iptables -A INPUT -p tcp -s YOUR_IP_ADDRESS -m tcp --dport 22 -j ACCEPT

You can open more ports on your firewall by changing the port numbers. So that you can access the services you require. In order to use outgoing connections add the below rule

iptables -I INPUT -m state--state ESTABLISHED,RELATED -j ACCEPT

Through this you will receive replies from the VPS on the other side of the connection. Once set up is done you can block everything else, and allow all other outgoing connections.

iptables -P OUTPUT ACCEPT

iptables -P INPUT DROP

Save the configuration

Now list the rules to see if anything is missing out:

iptables -L –n

-n : indicates only ip addresses, not a domain name.

You can save your firewall configuration by

iptables-save | sudo tee /etc/sysconfig/iptables

To ensure everything works fine, just restart the firewall. The saved rules will run even when the VPS is rebooted.

service iptables restart

Flush to unlock yourself

In case if you block yourselves from accessing the VPS, the Digital Ocean web interface will allow us to connect to the server via console access.

To get back to the VPS again, you can use the following command which will flush the filters, once logged in.

iptables -F

Hope you liked it and if any assistance needed Contact Us.

Subscribe to get free blog content to your Inbox

Written by actsupp-r0cks

Blog

Check Iptables Firewall set up on Centos 6