![]() ![]() Then you will need to start the service like so: systemctl start rvice If the result returned: Active: inactive (dead) Once the installation is complete run the following to see whether NxFilter is running: systemctl status rvice To run the installation package execute the following within putty: yum -nogpgcheck localinstall nxfilter-4.1.Ĭhange the file name in the above syntax to reflect the file name that you uploaded via WinSCP earlier in this process. Open Putty and navigate to your /tmp folder like so: cd /tmp We are now ready to install NxFilter onto our server. In my case the file was called nxfilter-4.1. Drag and drop your preferred rpm from your extracted files folder into your WinSCP /tmp pane. ![]() Now open WinSCP and navigate to the /tmp directory. Extract the files from zip file in preparation for uploading to your CentOS server. In my case it was named DeepWoods-nxfilter-rpms-e32cd76552c8.zip. Go to Rob Asher's NxFilter RPMs page here:Ĭlick the Download Repository link from the site above to download the zip file. Now we'll download the RPM packages necessary to install NxFilter. ![]() firewall-cmd -permanent -add-service=httpįirewall-cmd -zone=public -add-port=443/tcp -permanentįirewall-cmd -zone=public -add-port=53/tcp -permanentįirewall-cmd -zone=public -add-port=53/udp -permanent HTTP or port 80 is used to connect to the web GUI and port 53 is required to allow DNS requests from machines on your network. Now that your machine is up to date we'll open the ports necessary to connect to NxFilter once it's installed. Connect to your machine using Putty and ensure that your machine is patched fully by using: yum update My example is running as a VMWare virtual machine. This tutorial assumes that you have a working install of CentOS 7 and you have access to and know how to use Putty and WinSCP. But if you can manage a PC network then you shouldn’t have much trouble, and what you’ll get for your efforts is one of the most capable and configurable free web filters around.Today I'll show you how to install and configure NxFilter on CentOS 7. If the default site blocking isn’t enough, NxFilter supports adding domains manually, or grabbing the blacklist from Shalla List or You get a stack of configuration options, there’s even support for authenticating users via LDAP and Active Directory (as well as password and IP address), all while delivering great performance (the developer claims NxFilter can handle "several thousands of users easily", and we wouldn’t disagree).Īgain, there is some complexity involved here, if only because of the lengthy feature list, and configuring NxFilter takes some time and thought. If you’re thinking this sounds extremely flexible, then you’d be right: but it’s just the start. And you’re even able to assign policies based on a time range, so for example an office might have a very loose policy at lunchtime, but something much more restrictive for the rest of the day. ![]() Your policies can then be applied to individual network users, or groups of users. A built-in netflow collector means you’re able to set bandwidth limits, too. If you need more control, it’s possible to create NxFilter policies which block sites by category (75 in total), or only allow access to particular site categories - or all internet access - for a certain amount of time a day. A browser-based console displays stats on web traffic, blocked domains and more, as well as logging your internet activities. Get NxFilter running on one PC, though, and it brings benefits right away, blocking known phishing sites and using packet inspection to detect some malware. It’s still not difficult - if you’ve created or managed a Windows network then you won’t have much trouble - but if you’re a network novice then it may take a while to figure things out. You’re left to decide how and where you configure your system (or network) DNS servers, and while this makes sense, even the web tutorial doesn’t walk you through every detail. One installation can protect your entire network - and it can all be yours for free. There’s built-in phishing protection, updated every two hours, while packet inspection can detect malware and bots. But the program can block access to websites based on domain, category, user, time, quota and more. NxFilter is a DNS-based web filter, so there’s no text-based content filtering. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |