Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm wondering if anyone can suggest a trouble-free firewall for me to use?
I just seem to have problems with any I try. First I tried Firestarter which I found very easy to use and was showing all ports stealthed on every firewall test I tried. However, it seemed to cause problems with my dial-up modem, as soon as I installed firestarter the modem wouldn't work and every time I tried to connect it would freeze my comp.
After re-installing the drivers it would work again for a while then it would stop working again.
Next, I tried the Firewall-Knoppix that came with Kanotix and that would show all ports stealthed except icmp which was shown as open on every test no matter what I tried.
Now, I'm trying GuardDog which again is easy to use and with this one everything I have set to allow connects but web pages are loading really slowly.
What I really want is a rule-based firewall as much like Kerio 2 as possible, which I use on windows, and preferably with a GUI.
I was forever switching between firewalls on Windows til I found Kerio so I will probably be doing the same on Linux now til I get one that feels right.
Any recommendations.
one of the best gui firewall apps for linux is probably fwbuilder has just about every options under the sun interface it more like checkpoint
i personally like shorewall its been very nice i've tried quite a few firewall frontends myself but shorewall seems to be the perfect one for me but its only command line with no gui.
Well I'm still using Guarddog at the moment and it's working very well for me now, I've done a few firewall tests and all ports are stealthed. I think my problems were caused by the fact I'm so used to using Kerio on Windows that I found Guarddog a bit too confusing but I've got the hang of it now.
However, FWBuilder looks promising so I may give that a go.
I'm just wondering how good Linux firewalls are in general at stopping trojan hijacked programs from accessing the net? Do they use md5 or anything like that?
Last edited by fannymites; 12-03-2004 at 05:30 PM.
since i've never used guarddog i cant say but as far as trojans you will have to create rules for your firewall within guarddog to drop packets that go to certain trojan ports like if destination port x is used for a trojan then it would be best to drop that port. I doubt that it has any built in rules for these but i could be wrong
As far as md5 im not sure what you are talking about. There is hardly anyway for a firewall to compute a md5 on a packet and match that with something since it would be so much overhead and packets timestamp would be different hence a different md5. You could probably do it if you had and IDS or IPS which would reject certain kind of trojans and attacks based on rules something like snort which you would want to work in conjunction with your firewall.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.