LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-25-2009, 12:58 AM   #1
Decarn
LQ Newbie
 
Registered: Oct 2003
Posts: 6

Rep: Reputation: 0
Can Linux be use as an alternative to checkpoint firewall?


Hi Gurus,

I have very little experience with Linux. We have a challenge to seek an alternative to our costly checkpoint firewall and I'm wondering if it is possible to configure a Linux server to serve as a firewall. If it's possible, what distro should I go for? My company's standard is RedHat and it would be great if RedHat can be used.

Thanks!
 
Old 08-25-2009, 02:30 AM   #2
vishesh
Member
 
Registered: Feb 2008
Distribution: Fedora,RHEL,Ubuntu
Posts: 661

Rep: Reputation: 66
In linux iptables can be used as a firewall. But it can't replace checkpoint firewall, subset functions of checkpoint firewall specially ip filtering can be performed by iptables. access www.netfilter.org for more information

thnks
 
Old 08-25-2009, 02:38 AM   #3
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
Linux can perform firewalling quite nicely but it would be necessary to know what level of firewalling you implement.
There are open source firewall solutions like IpCop, Endian, Untangle. Look at them. Most of them are free downloads.
 
Old 08-25-2009, 04:39 AM   #4
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910
Quote:
Originally Posted by Decarn View Post
Hi Gurus,

I have very little experience with Linux. We have a challenge to seek an alternative to our costly checkpoint firewall and I'm wondering if it is possible to configure a Linux server to serve as a firewall. If it's possible, what distro should I go for? My company's standard is RedHat and it would be great if RedHat can be used.

Thanks!

Rather than just tossing in a product name let's see
what features you seek. If just blocking of certain
ports or narrowing traffic to certain ports down to
certain IPs, or forwarding certain traffic to "internal"
(e.g., a DMZed webhost) machines is all you need, IPtables
will do just fine. If you need application layer protection,
you can use proxies for certain things. And there's
http://l7-filter.sourceforge.net/ ... of course one can
also chuck snort into the mix, and psad and fwsnort.

The question is: is your company happy to pay for their
staff to tailor their solution?



Cheers,
Tink
 
Old 08-25-2009, 05:17 AM   #5
Decarn
LQ Newbie
 
Registered: Oct 2003
Posts: 6

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by vishesh View Post
In linux iptables can be used as a firewall. But it can't replace checkpoint firewall, subset functions of checkpoint firewall specially ip filtering can be performed by iptables. access www.netfilter.org for more information

thnks
Hi vishesh,

Thanks. Is this iptable available to all types of Linux including RedHat?
 
Old 08-25-2009, 05:47 AM   #6
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
Quote:
Originally Posted by Decarn View Post
Hi vishesh,

Thanks. Is this iptable available to all types of Linux including RedHat?
IPtables I guess is compiled in kernel itself and is available on almost all the distributions. RH is an enterprise level distribution and it can not afford to miss such a tool. For that matter no distribution I guess ships without it.
 
Old 08-25-2009, 06:09 AM   #7
vishesh
Member
 
Registered: Feb 2008
Distribution: Fedora,RHEL,Ubuntu
Posts: 661

Rep: Reputation: 66
yes, iptables is available for all common linux distro. You can also download source code from netfilter.org and compile it.

thnks
 
Old 08-25-2009, 06:22 AM   #8
Decarn
LQ Newbie
 
Registered: Oct 2003
Posts: 6

Original Poster
Rep: Reputation: 0
Many thanks everyone. Time to get my hand dirty.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Checkpoint Firewall Paris Heng Linux - Security 1 02-07-2009 10:45 AM
CheckPoint SecureClient behind Linux Firewall chamnane Linux - Security 1 06-25-2005 06:20 PM
Replacing checkpoint firewall, arp table itsjustme Linux - Security 1 12-30-2004 01:10 PM
Checkpoint firewall - a little rant neo77777 General 1 10-13-2003 10:55 PM
Checkpoint Firewall-1 and Redhat 7.1 lgo001 Linux - Software 0 05-15-2001 10:34 AM


All times are GMT -5. The time now is 05:22 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration