Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have a Dell Inspiron 3050 Micro (NUC sized box) running CentOS 7.3 and serving as a DHCP server for my home LAN and as a central connection through which I route all traffic to a VPN using OpenVPN. At the moment my setup looks like this:
DSL modem <-Ehternet-> Netgear Router <-WiFi-> Inspiron <-Ehernet-> LAN (switch)
I am running through the Netgear as the Inspiron has only one wired NIC. I just obtained a USB to NIC adapter so I can eliminate the Netgear. But first I would like to build a reasonably comprehensive firewall on the Inspiron.
Does anyone have a canned recipe to serve as a starting point to build a home firewall?
Linux comes with firewall capability in the kernel. It's called iptables.
You can either configure iptables from the command line or get a frontend for it. Ufw is in the repos. There is a gui frontend for ufw called gufw, which I quite like, but it doesn't appear to be in the CentOS repos.
A search for "firewall CentOS" will turn up more options.
The page you reference looks like a great stating point. I have used gufw in the past - perhaps on Ubutu. At least now I have a starting list of WHAT to block/allow etc. I can figure out the HOW.
CentOS 7 uses firewalld which has a GUI tool firewall-config. I have not tried to configure a NAT/router using firewalld yet. You can always disable it and go back to using iptables since you might find more information with the old style rule sets.
I have played with the GUI tool but I do not really understand how something there relates to something in iptables. A good opportunity for me to do some learning.
CentOS 7 uses firewalld which has a GUI tool firewall-config. I have not tried to configure a NAT/router using firewalld yet. You can always disable it and go back to using iptables since you might find more information with the old style rule sets.
I looked up firewalld. A few searches said that it's in the repos for most distributions.
Did firewalld come with a fresh installation of CentOS 7?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.