28 lines
857 B
Markdown
28 lines
857 B
Markdown
# Use case document
|
|
[nginx-mutual-ssl-proxy-tcp-udp](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/blob/master/docs/tls/nginx-mutual-ssl-proxy-tcp-udp.md)
|
|
|
|
# How to use harbian-audit to audit and apply
|
|
|
|
## Server node
|
|
```
|
|
sudo iptables-restore iptables_ufw-4-server.cfg
|
|
sudo bash bin/hardening.sh --audit-all
|
|
# This is set special service to exception(6.2 6.3 6.10)
|
|
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service dns,http,cups
|
|
sudo bash bin/hardening.sh --audit-all
|
|
sudo bash bin/hardening.sh --apply
|
|
```
|
|
|
|
## Client node
|
|
```
|
|
sudo iptables-restore iptables_ufw-4-client.cfg
|
|
sudo bash bin/hardening.sh --audit-all
|
|
# This is set special service to exception(6.10)
|
|
sudo bash bin/hardening.sh --set-hardening-level 5 --allow-service http
|
|
sudo bash bin/hardening.sh --audit-all
|
|
sudo bash bin/hardening.sh --apply
|
|
```
|
|
|
|
|
|
|