LinuxQuestions.org
Page 1 of 2 1 2
Show 50 post(s) from this thread on one page

LinuxQuestions.org (/questions/)
-   General (https://www.linuxquestions.org/questions/general-10/)
-   -   Firewall (https://www.linuxquestions.org/questions/general-10/firewall-4175577626/)

Fixit7 04-16-2016 08:32 PM
Firewall
 
Quote:
Don't waste your time with configuring a firewall on Linux when it is a computer that is alway behind a firewall, such as your home PC behind your home router, or when you have no particularly important information on your laptop. If you keep the services that listen on the network to a minimum and have a decently secure password, you can forget your firewall. I personally have no personal computer, laptop or smartphone with a firewall running. I have, however, a home router with a well-configured firewall.
I have a DSL modem. Is that a time of router ?

I recall that the modem required a long number when I set it up.

WPA key

ferrari 04-16-2016 08:45 PM
You're best to tell us the brand/model details. Many units are combined modem router devices. If your computer gets a DHCP assigned local (private) IP address when you connect the unit, it is doing the routing to the internet. Does it have LAN ports?

frankbell 04-16-2016 08:48 PM
From whence cometh that quote?

A home consumer grade modem is generally not a firewall in any sense of the word. To be certain, you'd need to RTFM your own modem's manual.

You will sometimes see the term, "firewall router." In my experience, home "firewall routers" are not worth relying on. A home router is not at all in the same league as a firewall appliance.

What is commonly referred to as a "firewall router" is a firewall only in the sense that the public ip address is different from the the LAN ips on the devices behind it. If you have any open incoming ports on that "firewall router," for all practical purposes, it is not a firewall.

The WPA key is irrelevant. That is needed to establish your connection. Once the connection is established, it is available to be exploited.

ardvark71 04-16-2016 09:15 PM
Quote:
Originally Posted by Fixit7 (Post 5532251)
I have a DSL modem. Is that a time of router ?
Hi Andy...

I wouldn't follow the advice you quoted. Firewalls are not foolproof. ;)

Many DSL modems, like mine, are modem/router combos that includes its own firewall. If you can give us the brand and model (and model number) we might be able to help you configure it. :)

Regards...

Fixit7 04-16-2016 09:44 PM
DLink by Verizon

DSL 2750 B

Puppy Linux has a firewall that uses Iptables, but I am currently not using it.

frankbell 04-16-2016 10:21 PM
Quote:
Puppy Linux has a firewall that uses Iptables, but I am currently not using it.
It may be pre-configured. Run this command

Code:
# iptables -L
to see the current settings.

ardvark71 04-16-2016 10:39 PM
Quote:
Originally Posted by Fixit7 (Post 5532263)
DLink by Verizon

DSL 2750 B
Yes, your modem does have a built in firewall. Please see page 35 here to see how to set it up. :)

Regards...

Fixit7 04-16-2016 10:47 PM
Thanks Ardvark.

Fixit7 04-16-2016 10:58 PM
I am setup for Medium.

Will High let me still surf the net, email, etc ??

Quote:
Maximum Security High security level only allows basic Internet functionality. Only Mail, News, Web, FTP, and
(High): IPSEC are allowed. All other traffic is prohibited.

Typical Security Like High security, Medium security only allows basic Internet functionality by default.


(Medium): However, Medium security allows customization through NAT configuration so that you can
enable the traffic that you want to pass.

ferrari 04-16-2016 11:27 PM
Yes. The firewall is to stop unwanted inbound access.

ferrari 04-16-2016 11:40 PM
A couple of simple online port scanning tools
http://www.t1shopper.com/tools/port-scan/
http://mxtoolbox.com/PortScan.aspx

Other tools offered
http://mxtoolbox.com/NetworkTools.aspx

ardvark71 04-16-2016 11:42 PM
Quote:
Originally Posted by Fixit7 (Post 5532278)
I am setup for Medium.

Will High let me still surf the net, email, etc ??
You're welcome, Andy. :)

From what I see, there is no difference between the two in terms of default settings but the medium setting allows for "customization through NAT configuration." ;)

Regards...

Fixit7 04-17-2016 08:01 AM
Thanks gentlemen.

ardvark71 04-17-2016 10:33 AM
Quote:
Originally Posted by Fixit7 (Post 5532418)
Thanks gentlemen.
You're welcome. :)

Regards...

DJ Shaji 04-29-2016 02:37 PM
Quote:
Originally Posted by frankbell (Post 5532256)
From whence cometh that quote?
hahaha :) Made me smile

Quote:
A home consumer grade modem is generally not a firewall in any sense of the word. To be certain, you'd need to RTFM your own modem's manual.

You will sometimes see the term, "firewall router." In my experience, home "firewall routers" are not worth relying on. A home router is not at all in the same league as a firewall appliance.

What is commonly referred to as a "firewall router" is a firewall only in the sense that the public ip address is different from the the LAN ips on the devices behind it. If you have any open incoming ports on that "firewall router," for all practical purposes, it is not a firewall.
But, most (all?) modem / router firewalls come with preset firewalls that block all incoming ports by default. Even those that don't, provide NAT for hooking up the LAN, so unless you configure explicit port forwarding, the local network is sealed off from the internet.


All times are GMT -5. The time now is 03:45 AM.
Page 1 of 2 1 2
Show 50 post(s) from this thread on one page