SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello
I currently use alien's Bob firewall script, I was thinking on trying shorewall just so I can do logging. I was wondering if someone is using the universal configuration which is intended for standalone system, now by no means em I a guru of networking or firewalling so I would like to ask the gurus if using universal configuration good enough for protection? I only use my computer for web browsing, online banking, netflix, kodi, etc. I dont do any remote SSH into the box, I dont host a server, nor any other external services. So what do the gurus have to say?
(I'm definitely not a guru)
I've used arno-iptables-firewall and shorewall with minor tweaks, and I like shorewall a lot. I've installed it on most of my machines.
If you use the Universal from "/usr/doc/shorewall-<version>/Samples/Universal/", you may wish to remove or comment out the PING and SSH lines in the 'rules' file.
Last edited by Hangaber; 11-27-2016 at 02:17 PM.
Reason: Added 'rules' part.
I'm not a guru. If you have an old PC and throw a few NICs in it then pfsense is another solid hardware firewall solution based on FreeBSD using OpenBSD's PF. I ran pfsense for a time and liked it.
Distribution: Slackware 15.0 x64, Slackware Live 15.0 x64
Posts: 618
Rep:
Shorewall is a very fine firewall, and the e-mail support is always active and Tone Eastep (the owner of Shorewall) stays on top of questions and is more than willing to help, so long as you've proved you at least tried to figure things out from the website (he's 72 and can't do this forever, heh).
I guess I can try the universal config and just follow the instructions and do some of the suggestions.
I always wanted to try pfsense or other firewall distro but never had as I really don't feel confident to fully and properly setup a firewall box, it would be nice to get someone who understand pfsense or other distro to set up a box for me and in the process teach me a thing or two
Distribution: Slackware 15.0 x64, Slackware Live 15.0 x64
Posts: 618
Rep:
Quote:
Originally Posted by FTIO
Shorewall is a very fine firewall, and the e-mail support is always active and Tone Eastep (the owner of Shorewall) stays on top of questions and is more than willing to help, so long as you've proved you at least tried to figure things out from the website (he's 72 and can't do this forever, heh).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.