148

Inspired by an earlier post, this one's for the IT workers. (lemmy.ca)

submitted 11 months ago by AFallingAnvil@lemmy.ca to c/memes@lemmy.ml

13 comments fedilink hide all child comments

Warp nACLs (network access control lists)

you are viewing a single comment's thread
view the rest of the comments

[-] CyberEgg@discuss.tchncs.de 3 points 11 months ago

Ouf. Please close port 80. And if this is not a web server, close any ports for inbound traffic and implement a spi capable firewall.

[-] lud@lemm.ee 4 points 11 months ago

It looks like these are examples from some documentation and not someone actual config

[-] AFallingAnvil@lemmy.ca 6 points 11 months ago

This, I just grabbed a random example. I shudder to think of actually posting the ACLs from any production environment

[-] ace@lemmy.ananace.dev 1 points 11 months ago

I think the file upload size limit could become a problem in my case, at least in terms of posting the complete ACLs.

We've recently managed to come down to only ~1.4k VLANs though, and the network firewall pair for our server networks now only handles ~600 SPB services.

[-] CyberEgg@discuss.tchncs.de 0 points 11 months ago

Yea, I guess. But this should only be an example for how not to ACL

[-] funkajunk@lemm.ee 3 points 11 months ago

Port 80 is open so you can redirect to https, it's not actually serving over http

this post was submitted on 22 Oct 2023

148 points (97.4% liked)

Memes

45196 readers

2188 users here now

Rules:

Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago

MODERATORS

gary_host_laptop@lemmy.ml

sexy_peach@feddit.de

cyclohexane@lemmy.ml

cypherpunks@lemmy.ml