Linux Help
guides forums blogs
Home Desktops Distributions ISO Images Logos Newbies Reviews Software Support & Resources Linuxhelp Wiki

Welcome Guest ( Log In | Register )



Advanced DNS Management
New ZoneEdit. New Managment.

FREE DNS Is Back

Sign Up Now
 
Reply to this topicStart new topic
> Firewall Help, Trying to find a gui firewall program
redfan
post Mar 17 2004, 11:39 AM
Post #1


Whats this Lie-nix Thing?
*

Group: Members
Posts: 18
Joined: 24-February 04
Member No.: 2,456



Hi,

Having gotten Mandrake 9.2 running pretty well with gnome, I am starting to get into Linux in a big way. However I am concerned that my computer is not as protected as it could be.

I am connecting to the net with always on adsl using eth0, When I installed Mandrake I tried to set-up my firewall, but got quite confused and just left it at the default (allow all connections). Having previously used Norton Internet Sec. on my dual boot sys, I am having great difficulty in trying to figure this out with Linux.

I have checked quite a few sites, and yet it still all baffles me a bit.

Can anybody help with either how I set the firewall up or if there is a good gui style (aka Norton type) system that I could use?

I would be very grateful for any help offered.

(I've gone a whole week without going near XP and that is something I thought would never happen)

Cheers
Go to the top of the page
 
+Quote Post
Robert83
post Mar 17 2004, 11:48 AM
Post #2


Its GNU/Linuxhelp.net
*******

Group: Support Specialist
Posts: 1,439
Joined: 3-January 04
From: Germany
Member No.: 2,069



Hi,

you should read this first :

oceanpark.com/notes/firewall_example.html


after that read this :

http://www.linuxhelp.ca/forums/index.php?a...f=3&t=2826&st=0


as for the GUI for iptables :

try this http://firestarter.sourceforge.net/


Sincerely
Robert B


--------------------
Robert Becskei
robert83@linuxhelp.net
--------------------
May the source be with us!
--------------------
AMD X2-3800 @ 2400Mhz
2048MB DDR 400Mhz
DFI Lanparty UT4 NF4 ULTRA-D
GeForce 7800GT
250GB+250GB
Pioneer DVD-RW
17inch Samsung Syncmaster 757NF
WinXP Pro (SP2)/ CentOS 4.3
--------------------
Go to the top of the page
 
+Quote Post
lussumo
post Mar 17 2004, 05:07 PM
Post #3


Grub-er
**

Group: Members
Posts: 33
Joined: 15-March 04
From: Toronto, Ontario
Member No.: 2,590



I did a lot of reading before deciding on a firewall, and the most important idea that the security gurus kept on pushing was that it's very important to separate your firewall from the stuff you want to protect.

If you want to get really secure, I suggest taking an old machine and setting it up as a firewall for all of your computers. I recently did just that using smoothwall (smoothwall.org), and it is awesome to say the least (and it's free). It's a linux-based firewall system that you can control almost entirely through a web gui interface. Lots of support and helpful ppl on the forums, too.
Go to the top of the page
 
+Quote Post
Robert83
post Mar 17 2004, 05:12 PM
Post #4


Its GNU/Linuxhelp.net
*******

Group: Support Specialist
Posts: 1,439
Joined: 3-January 04
From: Germany
Member No.: 2,069



Okay,

I've been using iptables as the firewall,...and not a old computer , I'm using a XP2000,256DDR Nforce2,GeForce2MX as the firewall, got 3 ethernet cards, 1for the net , 1 for mail,web,ffp [future ] servers , 1 for DMZ.


Sincerely
Robert B


--------------------
Robert Becskei
robert83@linuxhelp.net
--------------------
May the source be with us!
--------------------
AMD X2-3800 @ 2400Mhz
2048MB DDR 400Mhz
DFI Lanparty UT4 NF4 ULTRA-D
GeForce 7800GT
250GB+250GB
Pioneer DVD-RW
17inch Samsung Syncmaster 757NF
WinXP Pro (SP2)/ CentOS 4.3
--------------------
Go to the top of the page
 
+Quote Post
redfan
post Mar 17 2004, 05:49 PM
Post #5


Whats this Lie-nix Thing?
*

Group: Members
Posts: 18
Joined: 24-February 04
Member No.: 2,456



Hi,

Cheers for that help... I will try and wade my way through that wink.gif
It looks very informative, so me thinks I need a little time to get to grips with this. Again thanks, and I will keep you posted of my progress.

Bye the way, just to say of all the Forums I've checked out this is by far the most helpfull so far... or it could be that my questions are a little dumb sometimes....

Either way, I am soooo pleased I joined the Linux community and look forward to ridding my system of M$ very soon!!

biggrin.gif
Go to the top of the page
 
+Quote Post
hughesjr
post Mar 18 2004, 06:07 AM
Post #6


Its GNU/Linuxhelp.net
*******

Group: Admin
Posts: 3,433
Joined: 25-July 03
From: Corpus Chrsiti, TX, USA
Member No.: 1,151



QUOTE (lussumo @ Mar 17 2004, 05:07 PM)
the most important idea that the security gurus kept on pushing was that it's very important to separate your firewall from the stuff you want to protect.

That is good advise ... but actually, I recommend that you do both ... setup a seperate firewall at the boundary (so you can share your internet connection) AND put a software firewall (like Zone Alarm, Norton Personel Firewall, etc. for windows ... a simple iptables script like the ones built in for Linux) on each PC inside the firewall.

Smoothwall uses iptables ... it is good, but I just use iptables without the gui interface like robert83.

Another good gui firewall is IPCOP.

Another one (that is included with Mandrake 9.2) is Shorewall.

Personally, I think it is easier to learn how to use iptables directly than to learn how to use the GUI firewalls (at least for complicated networks ... for home networks, the out of the box setup is usually fine)....

Also, an older pc is fine for a small network (like a home network with 2-6 PCs), but on larger networks, a better machine will be required.


--------------------
Johnny Hughes
hughesjr@linuxhelp.net
Enterprise Alternatives: CentOS, WhiteBoxEL
Favorite Workstation Distros (in order): CentOS, Gentoo, Debian Sarge, Ubuntu, Mandrake, FedoraCore, Slackware, SUSE
Favorite Server Distros (in order): CentOS, WhiteBoxEL, Debian Sarge, Slackware, Mandrake, FedoraCore, Gentoo, SUSE
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



RSS Lo-Fi Version Time is now: 21st October 2017 - 07:22 AM