Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
02-28-2006, 08:04 AM
|
#1
|
|
LQ Newbie
Registered: Oct 2004
Location: Maryville, TN
Distribution: Kanotix
Posts: 13
Rep: 
|
Software Firewall
Do you really need a software firewall if you are behind a router with a hardware firewall? Just looking for opinions. I'm not that swift when it comes to security knowledge.
|
|
|
|
|
02-28-2006, 08:16 AM
|
#2
|
|
Senior Member
Registered: May 2004
Location: Albuquerque, NM USA
Distribution: Debian-Lenny/Sid 32/64 Desktop: Generic AMD64-EVGA 680i Laptop: Generic Intel SIS-AC97
Posts: 4,250
Rep: 
|
I have my hardware firewall set with a few ports open that I use SOMETIMES. The software firewall (Firestarter) has those ports closed unless I want to actively use them.
I find it much easier to temporarily open ports using the software firewall GUI.
|
|
|
|
|
02-28-2006, 08:57 AM
|
#3
|
|
Member
Registered: May 2004
Location: Atlanta, GA USA
Distribution: Redhat ES4, FC4, FC5, slax, ubuntu, knoppix
Posts: 155
Rep:
|
One thing to consider about a software firewall is specific rules. Routers are generally open or closed at the port level and many of them don't do advanced rules.
For instance, I open ports 80 and 25 on my router and then on my server I use iptables to filter out by country and by known threats from SANS Internet Storm Center.
This gives me added protection and saves me from buying an expensive hardware appliance that would work better than say a linksys or netgear.
|
|
|
|
|
02-28-2006, 09:35 AM
|
#4
|
|
LQ Newbie
Registered: Oct 2004
Location: Maryville, TN
Distribution: Kanotix
Posts: 13
Original Poster
Rep:
|
Thanks guys, that's exactly what I wanted to know. Now I need to learn about ports and iptables.  |
|
|
|
All times are GMT -5. The time now is 03:55 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
