LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 04-04-2004, 10:57 AM   #1
svarreby
Member
 
Registered: Nov 2003
Location: Hudiksvall, SWEDEN
Distribution: Slackware 10.1
Posts: 70

Rep: Reputation: 15
Slackware 9.1 firewall box


I have following hardware (old server):

2 x CPU 233Mhz
384 Mb RAM
4 Gb IDE Hard disk
CD-ROM
Floppy
2 NIC's

I will try to get Slack into this machine, with the 2.4 kernel. I could skip XFree and only go for CL. What security packages (IPtables-based firewall, routing etc etc) are avaliable for Slack 9.1?

I did visit www.linuxpackages.net and noticed that Snort 2.0 was ready!

... OH, and another one - do you know of any ready-made iptables firewall-scripts that support 2 zones or a GUI tool that will make this easy (for Slackware)?
 
Old 04-04-2004, 12:30 PM   #2
rose_bud4201
Member
 
Registered: Aug 2002
Location: St Louis, MO
Distribution: Xubuntu, RHEL, Solaris 10
Posts: 927

Rep: Reputation: 30
Well, you could always check out the packages listing at slackware.com - my favorite ftp server's here: ftp://ftp.cerias.purdue.edu/pub/os/s...1/PACKAGES.TXT. iptables is there, but I don't think anything else you'll need comes standard :-/

There are some decent firewall utilities knocking around...http://www.linuxquestions.org/questi...wall+graphical mentions a good number of them ^_^

cool,
Laura
 
Old 04-04-2004, 01:24 PM   #3
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
guarddog
firewall builder
firestarter

Other assorted links:
http://www.linuxguruz.com/iptables/

---EDIT---
If you are planning on going without X, you won't be able to use any of the standard firewall GUI stuff. In that case, check out the netfilter . They have numerous HOWTOs and guides on building a firewall script from scratch. Make sure to checkout the frozen tux tutorial there as well. IMO, you will learn order of magnitude more about iptables and networking by doing it that way, rather than relying on a GUI to do it for you.

Last edited by Capt_Caveman; 04-04-2004 at 01:32 PM.
 
Old 04-04-2004, 07:10 PM   #4
TheIrish
Member
 
Registered: Oct 2003
Location: ITALY
Distribution: Debian, Ubuntu, Fedora
Posts: 137

Rep: Reputation: 15
Hi,
there are many iptables script out there but in my opinion nothing fits a box better then your own script so I guess you should give a look at http:/www.netfilter.org documentation.
Snort is a great software so, yes, install it.
Keep an eye on the integrity of the FS. If you don't need great features but, you could use Integrit for this (not sure if there's a Slack package). It's easy to use and it just does what you need.
Once you're done with the iptables script, you might even try to do a check with Nessus. Not always so useful, but it can save your ass.

If you need a hand with iptables, well, I guess you're in the right place.

* * *
EDIT: for logging, I suggest syslog-ng. It allows you more control on where to write what

Last edited by TheIrish; 04-04-2004 at 07:16 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Inetrnet connection sharing between a Slackware box and windows box planetsheinker Slackware 10 09-24-2006 12:53 AM
Firewall Box Centinul Linux - Security 10 07-24-2005 04:23 AM
stand-alone firewall box? hoover93 Linux - Security 1 10-21-2004 03:19 AM
XP Box won't connect to internet thru RH9 Box (firewall/dhcpd), it can only ping fire Rhapsodic Linux - Networking 4 07-10-2004 04:02 PM
MSN through firewall box ZaphyR Linux - Security 2 12-09-2003 11:17 AM


All times are GMT -5. The time now is 03:27 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration