Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm looking into installing Mandrake on my computer, which is currently running win2000 (would be a dual boot system). For win2000 I am thinking about buying a Netgear router/firewall. Does Mandrake/linux offer a low overhead secure software firewall, which would make a hardware firewall redundant and not very usefull? If I can stay away from hardware, I can save $140 (cdn).
Originally posted by LinuzRulz On mandrakes website there is a link to Bastille. 1.5M file D/L and install. Xcellent firewall. have had it scanned and it works great!!!!!!
Is Bastille a whole new firewall implementation, or does it need iptables (or ipchains for older kernels) to be compiled into the kernel, which makes Bastille simply a front-end to iptables (granted a convenient one at that if you don't know enough about tcp/ip to be able to construct your own firewall rulesets).
hi,
bastille is a front end and it can either use ipchains or iptables.
it is fairly intelligent and can configure nat , logging and there are also modules to secure the local environment like who is allowed to log in , run cron , sendmail etc.
It's extremely useful if you want a fast and easy firewall config.
you can add additional rules later.
did i mention it was easy to use and setup?
what about your w2k setup? if you still need to use it on the internet, you should firewall it too. if you have a dedicated computer for the firewall that can run linux, then you're all set. if not, i would recomend a h/w firewall (router). in windows, i find, a s/w firewall is SERIOUSLY slow... on my cable connection in windows, a s/w firewall slows me to about 10% of what i get without it. i have noticed no measurable throughput slowdown now that i use a dedicated linux box as firewall and router. a Linksys router (or whatever) would probably be just as efficient.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.