Hello,

I've been using Shorewall Firewall for some time now and just ran across GuardDog firewall setup util and GuidDog netwrk routing util.

I haven't installed these yet and before I do I was wondering if I could get some feedback from some of the novices to the experienced users on the good the bad and the ugly of these two utilities as well as comments on my setup below.

Right now I have a dialup connection to the internet and use IP masq'ing for 2 other winblows pc's behind the linux box running shorewall.

Eventually I will be getting DSL with 6 available public ip's and am wondering how robust the GuideDog util is for port forwarding to privately addressed pc's.

Shorewall uses DNAT (mainly is used when you only have 1 public ip on eth0), and STATIC NAT(many public ip's-like a 1to1 nat) variants for port forwarding and Masqurading or SNAT for outbound connections.

Proxy Arp?

There isn't a GuideDog usersmanual yet so I was wondering what, if any, experiences people of had using GuideDog for port forwarding of regular services like smtp, http, ssh, dns, ect...ect...vpn/ipsec.

Trying to get an idea of how robust this GuideDog utility is for port forwarding..from any of the advanced users and how this works in conjunction with GuardDog?

Thanks,

Guarddog is very easy to setup and does a great job. I "flunked" all the other firewalls I tried. I'm using it on a standalone box with a dial-up connection, but I think it would be easy to setup for anything more complicated. Just read the brief manual beforehand.
My only problem with it has been getting it to start automatically at system boot. I have to go into a console as root to start it. But that's more of a system configuration issue than a guarddog issue, I suspect.

peace!
Siri Amrit

Cool..........

Thanks for the reply Tigerflag.

So in your situation your not using the GuideDog portion because this is on a standalone system. Too bad...this is what I'm most concerned about..I'll just have to install it a mess with it myself.

Again,,,thanks for the reply anyways.

All firewalls on Linux are more or less just a GUI interface for netfilter ...

I guess it depends on what your definition of a GUI is then..

Shorewall firewall isn't a gui...its a bunch of shell scripts. Your editing conifg files from a shell..

Yes, its iptables made easy but far from what I would consider a GUI for netfilter..

GuardDog and GuideDog on the other hand are your typical "Pretty GUI windows"....thats my defintion of GUI anyways..Graphical User Interface....but if you considered XFREE (twm window manager) windows gui based then I can understand what your definition of GUI is then..