Originally Posted by fizeelinux
I am planning to setup a local firewall for my home pc running Centos 5.3 which uses a broadband connection.The reason being i would like to learn things with firewall concepts(port blocking) and content filtering(blocking web pages).I read in some forums that shore wall is bit easier in configuring.Can anyone suggest me some useful books for shore wall or any other firewall?.And what else do i need in setting up this since i am trying in my personal pc.Please assist me in this regard.Thanks in advance.
has linux distros refer to as specialty distros. Their so purpose is to perform a specific task such as firewalls, NAS storage and rescue CDs. Here a few firewall linux distros:
1. Coyote Linux
Coyote Linux Personal Firewall is a personal firewall distribution of Linux designed for the purpose of protecting a personal or educational network. In addition to being designed to have very low hardware requirements, Coyote Linux is able to provide the performance and uptime that is expected from any Linux based system. This firewall product is licensed for personal and educational use and is available free of charge.
Devil-Linux is a CD-based Linux distribution for firewalls and routers. The goal of Devil-Linux is to have a small, customizable and secure (what is secure on the Internet?) Linux. The future of Devil-Linux will go far beyond an ordinary router, we will provide a lot of other services, but the distribution will still be easy and fast to maintain.
3. IPCop Firewall
IPCop Linux is a complete Linux Distribution whose sole purpose is to protect the networks it is installed on. After seeing the direction certain Linux Distributions were heading in, a group of dissatisfied users/developers decided that there was little reason for the idea of a GPL Linux Firewall Distribution of such potential to be, simply, extinguished. By implementing existing technology, outstanding new technology and secure programming practices IPCop is the Linux Distribution for those wanting to keep their computers/networks safe. The IPCop Linux Team is dedicated to doing the very best job possible to keep your systems safe, as you can see on our site. "The Bad Packets Stop Here!"
pfSense is a m0n0wall-derived operating system. It uses Packet Filter, FreeBSD 6.x (or DragonFly BSD when ALTQ and CARP is finished), ALTQ for excellent packet queuing, and an integrated package management system for extending the environment with new features.
5. Untangle Gateway
Untangle Gateway is a Debian-based network gateway with pluggable modules for network applications like spam blocking, web filtering, anti-virus, anti-spyware, intrusion prevention, VPN, SSL VPN, firewall, and more.
Vyatta software is a complete, ready-to-use, Debian-based distribution that is designed to transform standard x86 hardware into an enterprise-class router / firewall. Vyatta software includes support for commonly used network interfaces, and industry-standard routing protocols and management protocols. Unlike previous open-source routing projects, all these features are configurable via a single command-line interface (CLI) or web-based graphical user interface (GUI). Vyatta software is available as a free Community Edition as well as tiered Software Subscriptions that include maintenance, upgrades and support.
Also, you can use iptables which is preinstall on most distros.
Below are three videos from Linux Journal on its usage.
Mastering IPTABLES part 1
Mastering IPTABLES part 2
Mastering IPTABLES final