This document describes
how to prepare Security Enhanced Linux (SELinux) and IPTables for
a SAS High-Performance Analytics infrastructure deployment.
Security Enhanced Linux
(SELinux) is a feature in some versions of Linux that provides a mechanism
for supporting access control security policies. IPTables is a firewall—a
combination of a packet-filtering framework and generic table structure
for defining rulesets. SELinux and IPTables is available in most new
distributions of Linux, both community-based and enterprise-ready.
For sites that require added security, the use of SELinux and IPTables
is an accepted approach for many IT departments.
Because of the limitless
configuration possibilities, this document is based on the default
configuration for SELinux and IPTables running on Red Hat Enterprise
Linux (RHEL) 6.3. You might need to adjust the directions accordingly,
especially for complex SELinux and IPTables configurations.