2021-07-20: WikiSuite will now support all major Linux distros. Thus, the information below is no longer updated. It may still be valid, or not. It will be eventually removed from this site, so anything relevant should be moved to the appropriate site. For anything related to ClearOS, please search among the following: ClearOS site, code base, Developer docs, Wiki or forum.
Please contact us if you would like to help out.
The dynamic firewall app allows an administrator to generate and implement very specific, time-based, firewall rules triggered off events.
For example, rather than opening up ports for SSH, OpenVPN or the Syncthing admin panel to the entire Internet, the Dynamic Firewall app can be configured to open these ports after a user authenticates via the ClearOS admin panel (ideally, using two-factor) from the source IP of the user logging on.
Install
From the Marketplace
Install from web interface (in the Network section), like all the other apps: Dynamic Firewall app for ClearOS
Manually
yum install app-firewall-dynamic
How to access
In the ClearOS admin panel, navigate to "Network -> Firewall -> Firewall Dynamic".
Protected apps
- SSH
- OpenVPN
- Syncthing (per user)
On roadmap
- phpMyAdmin
- Openfire admin panel
- Kimchi admin panel (8001)
Later
- Tiki, presumably via generic port 80 / 81 protection like htpasswd
- Elasticsearch : Adminer is protected via Webconfig?
- FusionPBX
- Kimchi virtual machines