I spent an hour this evening getting the firewall in order. I was getting  a lot of intrusion attempts on the ssh port (22), so I restricted the port by IP address and now I bet my secure log will be very cle an.

If you run a web server (or mail server or ...), you really  need to insure that all unessential services are turned off, and that your firewall is set to reject or drop everything unwanted.

There are lots of good iptables references out there. Just search for "iptables howto" or "iptables tutorial". One that might get you started if you don't already know what you're doing is at the Fedora project. It is relevant to most Linux distributions, not just Fedora.

I would post mine here verbatim, but it has a lot of trusted IP information that I don't want to expose. If anyone is really interested, I'd be happy to sanitize it and post it.