tyler.durden
/
harbian-audit
mirror of https://github.com/hardenedlinux/harbian-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
harbian-audit/docs/use-cases/tls-transmission-usecase/using-Nginx-as-SSL-tunnel-4...
History
samson a82e2ee1f7 Organize the document structure. 2019-04-02 04:32:27 +08:00
..
Readme.mkd Organize the document structure. 2019-04-02 04:32:27 +08:00
iptables_ufw-4-client.cfg Organize the document structure. 2019-04-02 04:32:27 +08:00
iptables_ufw-4-server.cfg Organize the document structure. 2019-04-02 04:32:27 +08:00

Readme.mkd

Use case document

nginx-mutual-ssl-proxy-tcp-udp

How to use harbian-audit to audit and apply

Server node

sudo iptables-restore iptables_ufw-4-server.cfg 
sudo bash bin/hardening.sh --audit-all 
# This is set special service to exception(6.2 6.3 6.10)
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service dns,http,cups
sudo bash bin/hardening.sh --audit-all 
sudo bash bin/hardening.sh --apply

Client node

sudo iptables-restore iptables_ufw-4-client.cfg
sudo bash bin/hardening.sh --audit-all 
# This is set special service to exception(6.10)
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service http 
sudo bash bin/hardening.sh --audit-all
sudo bash bin/hardening.sh --apply