LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   Should I disable my default Fedora Firewall? (http://www.linuxquestions.org/questions/linux-security-4/should-i-disable-my-default-fedora-firewall-687784/)

baig 12-02-2008 12:45 PM

Should I disable my default Fedora Firewall?
 
Hi,

On an advice of a member I installed Firestater firewall tool with dhcp to overcome network connection sharing problem.. I configured and make my both pcś run using Lan internet connection..


Now my question is

"Should I disable default Fedora Firewall or Not? "

because two firewalls may conflict in rule ??

Thanks in advance!!

Cheers!!

acid_kewpie 12-02-2008 01:21 PM

yes absolutely. It keeps improving but the default tools are pretty noddy and as long as you're happy the basics are also covered via firestarter then you want to disable the standard one.

baig 12-02-2008 01:40 PM

Configuring a satisfying firewall on Fedora is never an easy job for me... Everything I do till now is just a guessing game!!

I don't know why I can't understand it...

Thanks Indeed

Cheers!!

baig 12-03-2008 11:51 AM

After reading allot of threads here.. I have realized that:

Iptables and FIREWALLS are alternatives to each other... am I right?


If yes, then please let me know some basic rules to be set on FireStater, which i have installed recently.. At this moment I have all things enabled.. iptables, which i have never edited any thing.. Fedora default firewall enabled with beginners setup.. and firestater blank..


Now could anyone tell me please please what's the best option for me..

What should I keep on my pc in order to be safe?

IPTABLES???

Firestater???

or

Fedora Default firewall?



please give me some suggestion for your choice with the safest conifguration..


I am Connected to LAN SERVER and My Old PC using xp is connected to me and i am sharing my connection through firestater, with two LAN cards on my Linux box.

It would be convenient for me to stay with firestater.. any generous help is always appreciated ..

Thanks..

acid_kewpie 12-03-2008 12:08 PM

no, you've misread. ALL "firewalls" are actually configurations of the Linux NetFilter subsystem. *EVERYTHING* comes back to that. iptables is a command line tool to manipulate this subsystem and Firestarter is a tool to simplify and automate the iptables commands that are run. so iptables is 1 level up, firestarter and the fedora firewall tool are 2 levels up.

if you run "iptables -L" you'll see the contents of the netfilter tables. if you are running two systems you'll probably see their own relevant tables in there, happily contradicting each other.

win32sux 12-03-2008 12:11 PM

Linux's packet filtering is done by Netfilter. The command-line tool we use to configure Netfilter is iptables. There are GUI front-ends to iptables, such as Firestarter, Guarddog, etc. EDIT: Sorry, just realized acid_kewpie had already explained it.

baig 12-03-2008 12:55 PM

Thanks for your kind considerations..


Is there any "how to" tutorial for firewalls and iptable configuration, that you would suggest to a beginner?

Cheers!!

acid_kewpie 12-03-2008 12:59 PM

well not really, as a begineer would (pretend to) not know iptables exists, so it's just the same level of knowledge as any noddy firewall app for windows.

baig 12-03-2008 01:12 PM

It means, I shouldn't be pretending to be a security expert at this stage and let "them" work with default configurations ..:-)

So, my all three different "Security Solutions" are enabled without configuration:-) I would love to edit them when get enough understanding of how these tools work...!!


Thanks

Cheers!


All times are GMT -5. The time now is 06:36 AM.