On Wed, 2005-10-05 at 10:29 -0700, Brijesh Mishra wrote:
How to configure firewall on a separate PC in Linux.
On Wed, 2005-10-05 at 10:29 -0700, Brijesh Mishra wrote:
How to configure firewall on a separate PC in Linux.
1. Figure out a policy for your LAN 2. Implement the policies with iptables
Or use distros like smoothwall, ipcop, etc. if their feature set meets your needs.
-- Arun Khan (knura at yahoo dot com) If you didn't get caught, did you really do it?
On Wednesday 05 October 2005 17:29, Brijesh Mishra wrote:
How to configure firewall on a separate PC in Linux.
Use iptables.
Thought my answer was vague? Well, you get a vague answer for a vague question. Please be more descriptive while asking questions. Also, don't forget to query any search engine (politically correct ^^), for example Google ;), before you ask such questions. You will find that most of them are already answered :)
Brijesh Mishra wrote:
How to configure firewall on a separate PC in Linux.
Use *iptables*. You can also use a GUI based firewall configuration tool called *firestarter*. Use any search engine to more help on how to canfigure iptables and firestarter (http://www.fs-security.com/). At first learn how to use google search (ever heard?). :-).
On 10/15/05, Jayanta Chandra Chandra jccpc2003@gmail.com wrote:
Brijesh Mishra wrote:
How to configure firewall on a separate PC in Linux.
Use *iptables*. You can also use a GUI based firewall configuration tool called *firestarter*. Use any search engine to more help on how to canfigure iptables and firestarter (http://www.fs-security.com/). At first learn how to use google search (ever heard?). :-).
--
I wont recommend using just a GUI tool for firewall *iptables* configuration without knowing the basic of using *iptable* . Using GUI is very M$ Windoze way!! Lots of insecurity may be built in and would give a false sense of security in the firewall implementation.
As suggested earlier by Milind - go through the documentation at netfilter.org site. Read the fantastic tutorial of iptables from : http://iptables-tutorial.frozentux.net/iptables-tutorial.html
Though it would seem difficult at first, two or three readings of the tutorial will get you going to write your own rules. Its pretty easy and logical. Also get on the netfilter mailing list to check out everyday problems of begginer users. this is a very Linux way of doing things which is akin to the saying - "I someone wants a fish, teach him how to fish. Then he will have a fish whenever he wants". Ofcourse, where to find the pond or river is the problem - google can help there :-)
Happy firewalling - Gunz
SG Lists wrote:
On 10/15/05, Jayanta Chandra Chandra jccpc2003@gmail.com wrote:
Brijesh Mishra wrote:
...[snip]...
Use *iptables*. You can also use a GUI based firewall configuration tool called *firestarter*. Use any search engine to more help on how to canfigure iptables and firestarter (http://www.fs-security.com/). At first learn how to use google search (ever heard?). :-).
--
I wont recommend using just a GUI tool for firewall *iptables* configuration without knowing the basic of using *iptable* . Using GUI
iptable and iptables are not the very same software i think. ;-)
is very M$ Windoze way!! Lots of insecurity may be built in and would give a false sense of security in the firewall implementation.
As suggested earlier by Milind - go through the documentation at netfilter.org site. Read the fantastic tutorial of iptables from : http://iptables-tutorial.frozentux.net/iptables-tutorial.html
I totally agree with you :-)
Though it would seem difficult at first, two or three readings of the tutorial will get you going to write your own rules. Its pretty easy and logical. Also get on the netfilter mailing list to check out everyday problems of begginer users. this is a very Linux way of doing things which is akin to the saying - "I someone wants a fish, teach him how to fish. Then he will have a fish whenever he wants". Ofcourse, where to find the pond or river is the problem - google can help there :-)
I dont think we are here to discuss about fishing or something else =-O still you showed a good path 8-)
Happy firewalling
- Gunz
----
Jayanta Chandra Chandra E-mail: jccpc2003@gmail.com jccpc2003@yahoo.co.in jccpc2003@hotpop.com Phone No:(033)-24339769 Mobile No: 9330945886 Blog: http://360.yahoo.com/jccpc2003
-
Arun K. Khan -
Brijesh Mishra -
Dinesh Joshi -
Jayanta Chandra Chandra -
Milind Dhoke -
SG Lists