{"id":14350,"date":"2024-09-25T14:50:05","date_gmt":"2024-09-25T11:50:05","guid":{"rendered":"https:\/\/www.sunucun.com.tr\/blog\/?post_type=dt_articles&#038;p=14350"},"modified":"2026-02-07T08:31:21","modified_gmt":"2026-02-07T05:31:21","slug":"linux-sunucular-icin-firewall","status":"publish","type":"post","link":"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/","title":{"rendered":"Linux Sunucular \u0130\u00e7in En \u0130yi G\u00fcvenlik Duvar\u0131 (Firewall) Ara\u00e7lar\u0131 ve Kurulum Rehberi"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Guvenlik_Duvari_Nedir_ve_Neden_Onemlidir\" >G\u00fcvenlik Duvar\u0131 Nedir ve Neden \u00d6nemlidir?<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Guvenlik_Duvari_Kullanmanin_Avantajlari\" >G\u00fcvenlik Duvar\u0131 Kullanman\u0131n Avantajlar\u0131<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#En_Iyi_Linux_Guvenlik_Duvari_Araclari\" >En \u0130yi Linux G\u00fcvenlik Duvar\u0131 Ara\u00e7lar\u0131<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#1_UFW_Uncomplicated_Firewall\" >1. UFW (Uncomplicated Firewall)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#2_Iptables\" >2. Iptables<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#3_Firewalld\" >3. Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#4_CSF_ConfigServer_Security_Firewall\" >4. CSF (ConfigServer Security &amp; Firewall)<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Linux_Sunucusunda_Guvenlik_Duvari_Nasil_Yapilandirilir\" >Linux Sunucusunda G\u00fcvenlik Duvar\u0131 Nas\u0131l Yap\u0131land\u0131r\u0131l\u0131r?<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Adim_1_Guvenlik_Duvari_Kurulumunu_Yapin\" >Ad\u0131m 1: G\u00fcvenlik Duvar\u0131 Kurulumunu Yap\u0131n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Adim_2_SSH_Baglantisina_Izin_Verin\" >Ad\u0131m 2: SSH Ba\u011flant\u0131s\u0131na \u0130zin Verin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Adim_3_Izin_Verilen_Portlari_ve_Servisleri_Yapilandirin\" >Ad\u0131m 3: \u0130zin Verilen Portlar\u0131 ve Servisleri Yap\u0131land\u0131r\u0131n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Adim_4_Guvenlik_Duvarini_Yeniden_Yukleyin\" >Ad\u0131m 4: G\u00fcvenlik Duvar\u0131n\u0131 Yeniden Y\u00fckleyin<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/sunucun.com.tr\/blog\/linux-sunucular-icin-firewall\/#Sonuc\" >Sonu\u00e7<\/a><\/li><\/ul><\/nav><\/div>\n<p>Linux sunucular\u0131, a\u011f g\u00fcvenli\u011fi a\u00e7\u0131s\u0131ndan olduk\u00e7a esnek ve g\u00fc\u00e7l\u00fcd\u00fcr. Ancak, her sunucunun g\u00fcvenlik tehditlerine kar\u015f\u0131 korunmas\u0131 i\u00e7in etkili bir g\u00fcvenlik duvar\u0131na (firewall) ihtiyac\u0131 vard\u0131r. G\u00fcvenlik duvarlar\u0131, a\u011f trafi\u011fini denetleyerek k\u00f6t\u00fc ama\u00e7l\u0131 ba\u011flant\u0131lar\u0131 engeller ve sunucunuzun g\u00fcvenli\u011fini art\u0131r\u0131r. Bu makalede, <a href=\"https:\/\/www.sunucun.com.tr\/blog\/dt-article\/linux-sunucular-icin-firewall\/\">Linux sunucular i\u00e7in en iyi g\u00fcvenlik duvar\u0131 ara\u00e7lar\u0131<\/a> ve bu ara\u00e7lar\u0131n nas\u0131l kurulaca\u011f\u0131n\u0131 ele alaca\u011f\u0131z.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Guvenlik_Duvari_Nedir_ve_Neden_Onemlidir\"><\/span>G\u00fcvenlik Duvar\u0131 Nedir ve Neden \u00d6nemlidir?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>G\u00fcvenlik duvar\u0131 (firewall), a\u011f trafi\u011fini izleyen ve belirlenen kurallara g\u00f6re izin veren ya da engelleyen bir yaz\u0131l\u0131m veya donan\u0131m arac\u0131d\u0131r. Linux sunucular\u0131nda g\u00fcvenlik duvarlar\u0131, \u00f6zellikle d\u0131\u015f tehditlere kar\u015f\u0131 korunmada kritik bir rol oynar. Gelen ve giden trafi\u011fi filtreleyerek, sunucunuzun sadece g\u00fcvenilir kaynaklarla <a href=\"https:\/\/sunucun.com.tr\/iletisim\" data-internallinksmanager029f6b8e52c=\"95\" title=\"\u0130leti\u015fim bilgilerine buradan ula\u015f\u0131n\">ileti\u015fim<\/a> kurmas\u0131n\u0131 sa\u011flar. Bu sayede olas\u0131 sald\u0131r\u0131lara kar\u015f\u0131 ilk savunma hatt\u0131 olu\u015fturulmu\u015f olur.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Guvenlik_Duvari_Kullanmanin_Avantajlari\"><\/span>G\u00fcvenlik Duvar\u0131 Kullanman\u0131n Avantajlar\u0131<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Linux sunucular\u0131nda g\u00fcvenlik duvar\u0131 kullanman\u0131n ba\u015fl\u0131ca avantajlar\u0131 \u015funlard\u0131r:<\/p>\n<ul>\n<li><strong>A\u011f Trafi\u011finin Kontrol\u00fc:<\/strong> Sunucunuza gelen ve giden a\u011f trafi\u011fini denetleyerek, yaln\u0131zca izin verilen ba\u011flant\u0131lara m\u00fcsaade edebilirsiniz.<\/li>\n<li><strong>G\u00fcvenlik Tehditlerine Kar\u015f\u0131 Koruma:<\/strong> Bilinen sald\u0131r\u0131 tekniklerine ve k\u00f6t\u00fc ama\u00e7l\u0131 ba\u011flant\u0131lara kar\u015f\u0131 sunucunuzu koruyabilirsiniz.<\/li>\n<li><strong>Kullan\u0131c\u0131 ve Uygulama Bazl\u0131 G\u00fcvenlik:<\/strong> \u0130zin verilen kullan\u0131c\u0131lar ve uygulamalar d\u0131\u015f\u0131nda herhangi bir eri\u015fimi engelleyebilirsiniz.<\/li>\n<li><strong>A\u011f Performans\u0131n\u0131 Art\u0131rma:<\/strong> Gereksiz ve k\u00f6t\u00fc ama\u00e7l\u0131 trafi\u011fi engelleyerek a\u011f performans\u0131n\u0131 iyile\u015ftirebilirsiniz.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"En_Iyi_Linux_Guvenlik_Duvari_Araclari\"><\/span>En \u0130yi Linux G\u00fcvenlik Duvar\u0131 Ara\u00e7lar\u0131<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Linux i\u015fletim sistemi, kullan\u0131c\u0131lar\u0131na geni\u015f bir g\u00fcvenlik duvar\u0131 ara\u00e7lar\u0131 yelpazesi sunar. \u0130\u015fte <a href=\"https:\/\/www.linux.org\/\" target=\"_blank\" rel=\"noopener\">Linux<\/a> sunucular\u0131nda en \u00e7ok kullan\u0131lan g\u00fcvenlik duvar\u0131 ara\u00e7lar\u0131:<\/p>\n<h4><span class=\"ez-toc-section\" id=\"1_UFW_Uncomplicated_Firewall\"><\/span>1. UFW (Uncomplicated Firewall)<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p><strong>UFW<\/strong>, Ubuntu ve di\u011fer Debian tabanl\u0131 sistemlerde kullan\u0131lan basit ve g\u00fc\u00e7l\u00fc bir g\u00fcvenlik duvar\u0131d\u0131r. Kullan\u0131c\u0131 dostu bir aray\u00fcze sahiptir ve temel g\u00fcvenlik duvar\u0131 i\u015flemlerini kolayca yapman\u0131za olanak tan\u0131r.<\/p>\n<p>UFW kurulum ve temel kullan\u0131m komutlar\u0131:<\/p>\n<pre><code>sudo apt-get install ufw\r\nsudo ufw enable\r\nsudo ufw allow ssh\r\nsudo ufw status<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"2_Iptables\"><\/span>2. Iptables<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p><strong>Iptables<\/strong>, Linux\u2019un en yayg\u0131n kullan\u0131lan g\u00fcvenlik duvar\u0131 ara\u00e7lar\u0131ndan biridir. Iptables, a\u011f trafi\u011fini ip adreslerine, portlara ve protokollere g\u00f6re filtreler. Ancak kullan\u0131m\u0131 biraz daha teknik bilgi gerektirir.<\/p>\n<p>Iptables kurulumu ve temel kullan\u0131m komutlar\u0131:<\/p>\n<pre><code>sudo apt-get install iptables\r\nsudo iptables -A INPUT -p tcp --dport 22 -j ACCEPT\r\nsudo iptables -A INPUT -j DROP\r\nsudo iptables-save<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"3_Firewalld\"><\/span>3. Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p><strong>Firewalld<\/strong>, \u00f6zellikle Red Hat tabanl\u0131 sistemlerde (<a href=\"https:\/\/www.centos.org\/\" target=\"_blank\" rel=\"noopener\">CentOS<\/a>, Fedora) kullan\u0131lan dinamik bir g\u00fcvenlik duvar\u0131d\u0131r. Firewalld, b\u00f6lge tabanl\u0131 bir yap\u0131 kullanarak farkl\u0131 a\u011f alanlar\u0131na farkl\u0131 g\u00fcvenlik politikalar\u0131 uygulaman\u0131za olanak tan\u0131r.<\/p>\n<p>Firewalld kurulumu ve temel kullan\u0131m komutlar\u0131:<\/p>\n<pre><code>sudo yum install firewalld\r\nsudo systemctl start firewalld\r\nsudo firewall-cmd --permanent --add-service=ssh\r\nsudo firewall-cmd --reload<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"4_CSF_ConfigServer_Security_Firewall\"><\/span>4. CSF (ConfigServer Security &amp; Firewall)<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p><strong>CSF<\/strong>, geli\u015fmi\u015f g\u00fcvenlik \u00f6zellikleri ve kolay y\u00f6netimi ile bilinen pop\u00fcler bir g\u00fcvenlik duvar\u0131 arac\u0131d\u0131r. \u00d6zellikle cPanel sunucular\u0131nda s\u0131k\u00e7a kullan\u0131l\u0131r ve k\u00f6t\u00fc ama\u00e7l\u0131 giri\u015fimlere kar\u015f\u0131 ek koruma sa\u011flar.<\/p>\n<p>CSF kurulumu ve temel kullan\u0131m komutlar\u0131:<\/p>\n<pre><code>sudo apt-get install libwww-perl\r\nwget https:\/\/download.configserver.com\/csf.tgz\r\ntar -xzf csf.tgz\r\ncd csf\r\nsudo sh install.sh<\/code><\/pre>\n<h3><span class=\"ez-toc-section\" id=\"Linux_Sunucusunda_Guvenlik_Duvari_Nasil_Yapilandirilir\"><\/span>Linux Sunucusunda G\u00fcvenlik Duvar\u0131 Nas\u0131l Yap\u0131land\u0131r\u0131l\u0131r?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Bir g\u00fcvenlik duvar\u0131 kurduktan sonra, sunucunuzun ihtiya\u00e7lar\u0131na uygun \u015fekilde yap\u0131land\u0131r\u0131lmas\u0131 gerekir. G\u00fcvenlik duvar\u0131 kurallar\u0131n\u0131 do\u011fru \u015fekilde yap\u0131land\u0131rarak, hangi trafi\u011fin engellenece\u011fini ve hangi trafi\u011fe izin verilece\u011fini belirleyebilirsiniz.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Adim_1_Guvenlik_Duvari_Kurulumunu_Yapin\"><\/span>Ad\u0131m 1: G\u00fcvenlik Duvar\u0131 Kurulumunu Yap\u0131n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Sunucunuza uygun g\u00fcvenlik duvar\u0131 arac\u0131n\u0131 y\u00fckleyin ve etkinle\u015ftirin. \u00d6rne\u011fin, UFW kullan\u0131yorsan\u0131z:<\/p>\n<pre><code>sudo ufw enable<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"Adim_2_SSH_Baglantisina_Izin_Verin\"><\/span>Ad\u0131m 2: SSH Ba\u011flant\u0131s\u0131na \u0130zin Verin<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Sunucunuza uzaktan eri\u015fim sa\u011flamak i\u00e7in SSH ba\u011flant\u0131s\u0131na izin vermeniz gerekir:<\/p>\n<pre><code>sudo ufw allow ssh<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"Adim_3_Izin_Verilen_Portlari_ve_Servisleri_Yapilandirin\"><\/span>Ad\u0131m 3: \u0130zin Verilen Portlar\u0131 ve Servisleri Yap\u0131land\u0131r\u0131n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Sunucunuzda \u00e7al\u0131\u015fan di\u011fer servisler i\u00e7in de portlar a\u00e7man\u0131z gerekebilir. \u00d6rne\u011fin, web sunucusu i\u00e7in 80 (HTTP) ve 443 (HTTPS) portlar\u0131n\u0131 a\u00e7mak i\u00e7in:<\/p>\n<pre><code>sudo ufw allow 80\/tcp\r\nsudo ufw allow 443\/tcp<\/code><\/pre>\n<h4><span class=\"ez-toc-section\" id=\"Adim_4_Guvenlik_Duvarini_Yeniden_Yukleyin\"><\/span>Ad\u0131m 4: G\u00fcvenlik Duvar\u0131n\u0131 Yeniden Y\u00fckleyin<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>G\u00fcvenlik duvar\u0131nda yap\u0131lan de\u011fi\u015fikliklerin etkinle\u015fmesi i\u00e7in g\u00fcvenlik duvar\u0131n\u0131 yeniden ba\u015flat\u0131n veya yap\u0131land\u0131rmalar\u0131 yenileyin:<\/p>\n<pre><code>sudo ufw reload<\/code><\/pre>\n<h3><span class=\"ez-toc-section\" id=\"Sonuc\"><\/span>Sonu\u00e7<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Linux sunucular i\u00e7in en iyi g\u00fcvenlik duvar\u0131 (<a href=\"https:\/\/www.sunucun.com.tr\/blog\/dt-article\/linux-sunucular-icin-firewall\/\">firewall<\/a>) ara\u00e7lar\u0131 ile sunucunuzu etkin bir \u015fekilde koruyabilirsiniz. UFW, Iptables, Firewalld ve CSF gibi ara\u00e7lar, sunucunuzun g\u00fcvenli\u011fini sa\u011flamada \u00f6nemli bir rol oynar. Do\u011fru ara\u00e7lar\u0131 se\u00e7erek ve kurallar\u0131n\u0131z\u0131 iyi yap\u0131land\u0131rarak, a\u011f trafi\u011finizi kontrol edebilir ve sunucunuzu g\u00fcvenlik tehditlerine kar\u015f\u0131 koruyabilirsiniz. Bu rehberi takip ederek Linux sunucunuzun g\u00fcvenli\u011fini en \u00fcst seviyeye \u00e7\u0131karabilirsiniz.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Linux sunucular\u0131, a\u011f g\u00fcvenli\u011fi a\u00e7\u0131s\u0131ndan olduk\u00e7a esnek ve g\u00fc\u00e7l\u00fcd\u00fcr. Ancak, her sunucunun g\u00fcvenlik tehditlerine kar\u015f\u0131 korunmas\u0131 i\u00e7in etkili bir g\u00fcvenlik duvar\u0131na (firewall) ihtiyac\u0131 vard\u0131r. G\u00fcvenlik duvarlar\u0131, a\u011f trafi\u011fini denetleyerek k\u00f6t\u00fc ama\u00e7l\u0131 ba\u011flant\u0131lar\u0131 engeller ve sunucunuzun g\u00fcvenli\u011fini art\u0131r\u0131r. Bu makalede, Linux sunucular i\u00e7in en iyi g\u00fcvenlik duvar\u0131 ara\u00e7lar\u0131 ve bu ara\u00e7lar\u0131n nas\u0131l kurulaca\u011f\u0131n\u0131 ele alaca\u011f\u0131z. G\u00fcvenlik&hellip;<\/p>\n","protected":false},"author":1,"featured_media":14351,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[1519],"tags":[1527],"class_list":["post-14350","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-sanal-sunucu","tag-teknoloji"],"_links":{"self":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/14350","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=14350"}],"version-history":[{"count":1,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/14350\/revisions"}],"predecessor-version":[{"id":20139,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/14350\/revisions\/20139"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/media\/14351"}],"wp:attachment":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=14350"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=14350"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=14350"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}