Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Is the default firewall that comes with the Fedora distro safe enough on my Fedora firewall-router box , or is it better to run a dedicated application like Firestarter ?
The only other service I run on my firewall is the cups server for my /dev/lp0 printer connected to it.
tia
Firestarter is simply a Graphical interface for configuring iptables (the standard linux firewall), so it's really the same thing. Iptables is argueably one of the more robust and effective firewalls available. However, I'd recommend doing some research on how to actually configure your firewall first.
I understand that both applications are based on iptables, but Firestarter has more options, like ICMP filtering and NAT enabling that are not present on what I call the "default firewall " ( KDE->system settings->Security level )
So, is one easier to crack than the other ?
Is there any Linux firewall applications rating ?
After reading the Redhat v9.0 documentation chapter about iptables ( imho one of the best short articles on the subject ) I didn't feel like rolling my own rules.
Thanks for the info but I was expecting a reply like: A is better than B, or both are crap use C instead
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
If Fedora still uses lokkit, than by all means use a better front-end (Firestarter, Guarddog, etc). lokkit is the worst firewall I've ever seen, for any OS--ever.
I'm not really a big fan of lookit either. But if you're going to use something configurable like guarddog/firestarter, just make sure that do some port scanning/ pen-testing after setting it up.
Also, guarddog is designed more as a strict packet filtering firewall, so if you need any routing capabilities (NAT/Masquerading/etc), you'll need to install it's companion app called guidedog as well.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.