LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 03-19-2004, 10:23 PM   #1
SelaAragon
Member
 
Registered: Mar 2004
Location: Cary, NC
Distribution: Gentoo 1.4, Free BSD 5.2.1
Posts: 32

Rep: Reputation: 16
Firewall Question


Well 1 week in Linux and I'm loving it. It makes Windows look quite silly . I do have a question though: Where can I find a program which will alert me to intrusion attempts (similar to the way Nortons, Zone Alarm, and McAfee does)? I know ipchains does a great job but I also like to be able to monitor my connection personally as well (not really trusting ipchains). Also, I have it configured to Default settings on high. Is this sufficient or should I set special rules? According to my friends NMap scan she says I have 1 port filtered and the rest are closed (which is also far better than windows).

Last edited by SelaAragon; 03-19-2004 at 10:26 PM.
 
Old 03-20-2004, 01:22 AM   #2
Linux~Powered
Member
 
Registered: Jan 2004
Location: /lost+found
Distribution: Slack`er-current
Posts: 845

Rep: Reputation: 33
Well ipchains is considered to be depreciated and was updated with iptables; available at www.netfilter.org. Snort is an IDS (intrusion detection system) used to monitor network trafic and can be downloaded at www.snort.org.

Last edited by Linux~Powered; 03-20-2004 at 01:23 AM.
 
Old 03-20-2004, 02:05 AM   #3
tk31337
Member
 
Registered: Oct 2003
Location: Tucson, AZ
Distribution: Mandrake 10.0 Official
Posts: 193

Rep: Reputation: 31
If you want an easy to configure, distro agnostic, graphical tool for both your firewall and network monitoring, you might want to check out "firestarter".
 
Old 03-20-2004, 10:12 AM   #4
JoeDuncan
Member
 
Registered: Aug 2003
Location: Ottawa
Distribution: Redhat 5.2, 6.0, 6.1, Mandrake 7.2, 8.0, 9.1, 9.2, 10.0, Gentoo, Debian 3.1r0
Posts: 224

Rep: Reputation: 30
I've always found PortSentry to be very good, much less complicated than SNORT... you can have it run a script that does whatever you like on a scan detection (I have mine auto-generating IPTables rules to ban the scanner...)

Check it out here:

http://sourceforge.net/projects/sentrytools/
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
firewall question graziano1968 Linux - Networking 3 08-06-2005 09:41 AM
firewall question dna9 Linux - Software 2 11-18-2004 05:40 PM
Firewall question mulberry Debian 2 09-29-2004 01:14 PM
Question 1 Firewall Log Question 2 Network Monitor Soulful93 Linux - Networking 4 08-05-2004 12:05 AM
Firewall Question Oswego79 Linux - Security 2 10-01-2002 11:05 PM


All times are GMT -5. The time now is 12:39 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration