How to install Firewall and which one?

Howdy,

You don't need a firewall on your server. However, if you wish to use one, Webmin has the ability to configure one in Webmin -> Networking -> Linux Firewall.

-Eric

Hmm, I think it is a matter of taste if you want to have a firewall on your server or not, hence, if you "need" one. :)

I myself - using VMWare ESXi - don't have one on the server VMs, but I have an upstream router/firewall in form of a virtual PFSense which performs all connectivity for the servers.

If you don't have the opportunity to use an external firewall, and wish to have one on your server, the Linux built-in one (named "iptables") is the easiest way to go. Like Eric said, Webmin has a nice module to configure that. For simple firewall purposes, you won't need more that that. :)

Running "yum update" is a good way to keep your system up to date.

You can also do all that via Virtualmin by going to the System Information screen. In the top-most section named "System" is a line called "Package updates". You can use that to perform system updates, as well as optionally configure email notifications to let you know when packages are available.

-Eric

Yeah, I agree that keeping software up to date is more important than a firewall. If you have a flawed web server, then a firewall, which naturally allows its port through, is not gonna help. :)

And don't forget that - in addition to OS packages - you need to keep websites (PHP etc.) up to date! Many vulnerabilities that can lead to hacked systems occur in the website scripts themselves.