Sharp Zaurus SL-C3000 Instruction Manual page 75

Zaurus pda instruction manual

Hide thumbs Also See for Zaurus SL-C3000:

Quick start manual (39 pages)

Quick start manual (41 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

page of 212

/ 212
Bookmarks

my Zaurus SL-C3000 and SL-C3100

tty1

ttyUSB0

disable all non-essential listening ports

disable telnet (port 23) if running

shutdown ftp server if not used (port 21)

shutdown Samba server and portmap (port 111) when not in use

shutdown web server when not in use

tighten down access for sshd (port 22)

disable Qtopia sync with opie-security package (port 4242)

disable port 4992 and 4244 with inetd.conf

Firewall

Install iptables modules and configure them as a packet filtering firewall. You can also install

shorewall which is a framework that simplifies the management of iptable rules and configuration.

To enable IP filtering firewall, install the following:

iproute - [iproute_z2.2.4-now-ss991023-1_arm.ipk] or [iproute_20010824-1_arm.ipk]

iptables-base - [iptables-base_2.4.20_arm.ipk]

iptables-additional - [iptables-additional_2.4.20_arm.ipk] (optional)

shorewall - [shorewall-c3000_1.4.5-1_arm.ipk]

This version has been customised specifically for the C3000 and C3100, primarily as a firewall while

connected to a wireless network. Once installed, you can specify your network interface to be

firewalled by modifying /etc/shorewall/interfaces. The default is to protect the wireless cf (wlan0)

network using dhcp.

Once you have established a network connection, you can enable the firewall by issuing the

following command:

# su

# shorewall start

Once you disconnect, you can stop the firewall by issuing the following command:

# su

# shorewall stop

To check the status of the firewall issue the following command:

# shorewall status

The iptables-additional package contains extra libraries that will allow you to use all of shorewall's

features.

VPN

Setting up a VPN connection with the Z is possible. You will need to install the following packages:

iproute - [iproute_z2.2.4-now-ss991023-1_arm.ipk] or [iproute_20010824-1_arm.ipk]

ipsec - [ipsec-module_2.4.20-1_arm.ipk]

tun - [tun-module_2.4.20-1_arm.ipk]

vpnc - [vpnc_0.3.2-1_arm.ipk]

Once installed, you can establish a VPN connection by issuing the following command from a

75 of 212

http://www.users.on.net/~hluc/myzaurus/

16/09/2007 12:23

This manual is also suitable for:

Zaurus sl-c3100

Sharp Zaurus SL-C3000 Instruction Manual page 75

Related Manuals for Sharp Zaurus SL-C3000

Related Products for Sharp Zaurus SL-C3000

This manual is also suitable for: