You can download file for installing at this link http://rocky.molphys.leidenuniv.nl/page/iptables/download.htm Download this file arno-iptables-firewall-1.8.2a-stable.tgzDownload and Installing

Next, Create directory name “arno” :
Login as root

[root@test root]#cd ..
[root@test /]#
[root@test /]#mkdir arno
[root@test /]#

Untar file from your downloaded into /arno/ directory

[root@test /]#cd arno ////Change directory to /arno directory you need to store file downloaded at this and use command as below :

[root@test arno]#tar -zxvf arno-iptables-firewall-1.8.2a-stable.tgz

You will have 10 files in this directory, Next, you need to delete arno-iptables-firewall-1.8.2a-stable.tgz file.

[root@test arno]#rm arno-iptables-firewall-1.8.2a-stable.tgz

You have configuration file and 2 file for setting up that is rc.iptables and iptables-firewall.conf

You need to change Owner all file to root Owner via command as below :

[root@test root]#chown -R root /arno

Change Permission on some file via command as below :

[root@test root]#chmod 700 /arno/rc.iptables
[root@test root]#chmod 600 /arno/iptables-firewall.conf

Read More…

About Arno’s Firewall
Very secure stateful filtering firewall Both kernel 2.4 & 2.6 support

It can be used for both single- and multi(eg. dual)-homed boxes

Masquerading (NAT) and SNAT support

Multiple external (internet) interfaces

Support multiroute masquerading (NAT)

Port forwarding (NAT)

Support MAC address filtering

Support for DSL/ADSL modems

Support for PPPoE, PPPoA and bridging modem setups

Support for static and ISP assigned (DHCP) IPs

Support for (transparent) proxies

Support for DMZ’s and DMZ-2-LAN forwarding

(Nmap)(stealth) portscan detection

Protection against SYN-flooding (DoS attacks)

Protection against ICMP-flooding (DoS attacks)

Extensive user-definable logging with rate limiting to prevent log flooding

Includes options to optimize your throughput

User definable open ports, closed ports, trusted hosts, blocked hosts etc.

Log & protection options are both highly customizable

Support for custom iptables rules in a seperate file

It can be used with chkconfig runlevel system (eg. RedHat/Fedora)

Main focus on TCP/UDP/ICMP but additional support for *ALL* IP protocols

It works with Freeswan IPSEC (VPN) & SSH Sentinel (http://www.freeswan.org) (+virtual IP’s)

It works with PoPTop PPTP (http://www.poptop.org)

It works with UPnP

DRDOS protection/detection (experimental)

It’s easy to configure

And much more…

Download and Install

Apache Installation

Check what packages is requires for httpd with command and remove it : #rpm -q –whatrequires httpd

1. Remove any old packages if they exist and kill the processes.
#rpm -e redhat-config-httpd
#rpm -e httpd
#ps aux | grep httpd
#killall httpd

2. Create a new directory for your source, move to that directory, and download your files.
#mkdir -p /usr/local/src/webserver
#cd /usr/local/src/webserver
#wget ‘apache source file from website .tar.gz’
#tar zxpf filename.tar.gz

3. Create your configure script.
#pico apache_install

4. Add the following to the script.
#cd /usr/local/src/webserver/apache_version
#make distclean

./configure –prefix=/usr/local/apache –enable-module=so –enable-rewrite=shared –enable-setenvif=shared –enable-mime=shared –enable-mime_magic=shared –enable-dir=shared –enable-auth=shared –enable-access=shared –enable-alias=shared –enable-status=shared –enable-userdir=shared –enable-vhost_alias=shared –enable-env=shared –enable-log_referer=shared –enable-log_config=shared –enable-log_agent=shared –enable-headers=shared –enable-speling=shared –enable-ssl=shared

5. Make the script executable.
#chmod +x apache_install

6. Build and install Apache.
#./apache_install
#cd /usr/local/src/webserver/apache_version*
#make
#make install

7. Link your control files.
#ln -s /www/bin/apachectl /usr/bin/apachectl
#ln -s /www/bin/apachectl /usr/sbin/apachectl

8. Start it up.
#apachectl start

Done for Apache Installation.