Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi there
I am newbie in linux , and I have RH 9
I want to setup a firewall
I used ZoneAlarm in windows , but I need a firewall , a linux native one
Thanks
The Linux kernel has a built in firewall. What you are really asking for is an easy configuration tool.
Firestarter is very nice. I normally use KDE (but have Gnome installed) and can use Firestarter just fine from KDE.
You run the configuration wizard and select which ports you want open for any servers you are running (often none). Rerun it to change if needed. It takes a minute or two.
You can also view the hits your firewall takes.
I'm sure firestarter works fine, but it doesn't seem quite as spiffy as Zone Alarm wfor Windows . . . which asks whether to accept or deny, records, and blocks which program and IP address attempts to access to and from the internet.
Some of us aren't use to configuring a firewall from scratch.
I downloaded the Mandrake 9.1 link but I"m running it on Mandrake 9.2
Last edited by studpenguin; 03-30-2004 at 08:59 PM.
spiffy is largely for windows users
secure, reliable functionality is for linux users
bit of a generality but there is a point in there somewhere
either you get gaurddog which is easy to set up, or firestarter
or you learn how to manipulate iptables (which is what gaurddog does for you through a gui)
or you could route linux through a window box and use zone alarm
I dont understand why people want to use any other firewall instead of iptables. man iptables is enough to get a firewall.
Also think that:
When you add any rule you can make it by yourself.
By this way you will get your own firewall and arrive at all points of your system.
here is a site that is a basic firewall script generator for IPTABLES. you tell it what services your running, what eth devices you have.. and the IP's etc etc...
My point is when there is a rogue program that tries to access the internet (egreess), or when another computer or server tries to acces the computer
when the firewall hasn't designated the rule to allow it to hapen yet,
Zone Alarm will immediately alert me and tell me that its trying to do that immediately.
Zone Alarm blocks everything until I tell it not to and has certain written suggestion about why that may or not be such as a good idea.
and it says excactly what the program is when it tries to do this.
I must admit I need to renew my knowledge about what certain kinds of protocols and ports mean. That takes awhile to remember,
But then again there are suggested standards for people who don't have time to learn them all and remember them all that are described within the firewall managing program.
Zone Alarm is good about this . . . I thought there'd be a Linux one that is at least as good for those such as that don't remember things too well .
I just allow (for my normal use) http,shttp,ftp,DNS,pop3,smtp, Real Audio and ICQ in the loacal and Internet zones
and that's it
tick the boxes
click on apply
sorted!
Closest thing your going to get to Zone Alarm is a IDS like Snort. For a nice, easy to setup iptables script check out http://projectfiles.com/firewall/
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.