LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 04-02-2004, 09:02 PM   #1
nikoz
Member
 
Registered: Feb 2004
Posts: 46

Rep: Reputation: 15
any firewall suggestion?


Hi..
I am setting up a database-driven website and i want to install a firewall in my system.I have suse 8.1 if that helps.Any good stuff apart from smoothwall(its too big to downlooad it with my 56 modem)
Thanx in advance
 
Old 04-02-2004, 09:08 PM   #2
leonscape
Senior Member
 
Registered: Aug 2003
Location: UK
Distribution: Debian SID / KDE 3.5
Posts: 2,313

Rep: Reputation: 47
Try guarddog.
 
Old 04-02-2004, 09:45 PM   #3
mhiggins
Member
 
Registered: Feb 2004
Posts: 140

Rep: Reputation: 15
I think smooth wall is an entire distro, are you going to build a second machine and make it a firewall, or are you looking to run a host based firewall ?

If you are going to build another box you may just want to install suse on that one and configure iptables. If
you want a gui there are a number of gui interfaces to iptables.

http://www.fwbuilder.org/

If you are looking to just use one computer and have a host based firewall you may just want to configure
iptables. If you want there are a number of gui interfaces to iptables.

http://www.fwbuilder.org/

-Matt
 
Old 04-02-2004, 11:17 PM   #4
xerophyte
LQ Newbie
 
Registered: Dec 2003
Location: Toronto,Ontario,Canada
Posts: 18

Rep: Reputation: 1
Hello,
You can try www.shorewall.net .. its iptables front end ...


If you need good firewall setup I would look into these

Snort +Snortsam + OinkMaster + Iptables

Snort => Analyzise the traffic and alert the snortsam,
Snortsam => Base on the snort alert it block the ip address for certain amount of time period.

Oinkmaster => Its little perl script which update the snort rules

Iptables is linux based firewall, which is pretty decent


hope that helps
 
Old 04-03-2004, 06:08 AM   #5
nikoz
Member
 
Registered: Feb 2004
Posts: 46

Original Poster
Rep: Reputation: 15
oh yes..

oh yes indeed it helps...it seems that my knowledge on security wasn't so good..i havent thought having a second machine as a firewall,it sounds very good idea but since i have only one machine i ll probably do it as host based firewall..thanx all of you..
 
Old 04-03-2004, 07:26 AM   #6
aqoliveira
Member
 
Registered: Dec 2001
Location: Portugal
Distribution: /Red Hat/Fedora/Solaris
Posts: 620

Rep: Reputation: 30
howzit

you may use iptables which is incorprated with your kernel what you can do is download a use friendly interface for it called FWBUILDER.

CHOW
 
Old 04-03-2004, 08:08 AM   #7
nikoz
Member
 
Registered: Feb 2004
Posts: 46

Original Poster
Rep: Reputation: 15
As i see iptables has to do with security issues..i didnt know that you can configure iptables to set a firewall.Where can i find a site with a good doccumentation..?
thanx again or the help
 
Old 04-04-2004, 08:11 AM   #8
mysterio
Member
 
Registered: Sep 2003
Location: Springfield Ma.
Distribution: Mandrake 9.2,Knoppix 3.7,Slackware 10.0, FreeBSD. 5.3, OpenBSD 3.6, NetBSD 2.0, Debian
Posts: 275

Rep: Reputation: 30
netfilter.org has alot of good info.
 
Old 08-29-2004, 11:28 PM   #9
christopherccv
Member
 
Registered: Jul 2003
Location: malaysia
Distribution: redhat
Posts: 31

Rep: Reputation: 15
Dear xerophyte.

good to hear that you are prososing a solution that exactly same as i using now.

but i have difficulty to setup the snortsam + iptables.

i have my snort+ACID+oinkmaster running fine.

i also manage to setup snortsam arcording to the documentation on the snortsam.net

event i have started the ./snortsam /etc/snortsam.conf
it show listening to snort but how do i know weather is runing or not?

futher more on the iptables section i don't quite undertand the ssp_iptables.c compilation.

could you please help me on this?

thank you
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Suggestion for an old PC satterfield.b Linux - General 3 07-06-2005 04:52 PM
suggestion floppywhopper LQ Suggestions & Feedback 8 06-17-2005 03:21 PM
Router & Firewall Distro? Need Suggestion :) SADIST_SLY Linux - General 7 08-12-2004 05:22 PM
suggestion infamous41md Linux - Security 6 12-23-2003 07:13 PM
Little Suggestion CARTMAN LQ Suggestions & Feedback 6 05-09-2002 03:44 PM


All times are GMT -5. The time now is 07:23 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration