tyler.durden
/
harbian-audit
mirror of https://github.com/hardenedlinux/harbian-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
harbian-audit/docs/use-cases/tls-transmission-usecase/nginx-mutual-ssl-proxy-http...
History
samson 43979c9dd9 Add Readme for use case, and update README. 2019-04-02 04:45:52 +08:00
..
Readme.mkd Add Readme for use case, and update README. 2019-04-02 04:45:52 +08:00
iptables_ufw-4-client.cfg Organize the document structure. 2019-04-02 04:32:27 +08:00
iptables_ufw-4-server.cfg Organize the document structure. 2019-04-02 04:32:27 +08:00

Readme.mkd

Use case deploy document

nginx-mutual-ssl-proxy-http

How to use harbian-audit to audit and apply

Server node

sudo iptables-restore iptables_ufw-4-server.cfg 
sudo bash bin/hardening.sh --audit-all 
# This is set special service to exception(6.2 6.3 6.10)
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service dns,http,cups
sudo bash bin/hardening.sh --audit-all 
sudo bash bin/hardening.sh --apply

Client node

sudo iptables-restore iptables_ufw-4-client.cfg
sudo bash bin/hardening.sh --audit-all 
# This is set special service to exception(6.10)
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service http 
sudo bash bin/hardening.sh --audit-all
sudo bash bin/hardening.sh --apply