LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > SUSE / openSUSE
User Name
Password
SUSE / openSUSE This Forum is for the discussion of Suse Linux.

Notices


Reply
  Search this Thread
Old 05-08-2006, 04:53 PM   #1
drowbot
Member
 
Registered: Dec 2004
Location: Tulsa, OK, USA
Distribution: SUSE, ArchLinux, Gentoo, LFS, Slackware, Fedora
Posts: 100

Rep: Reputation: 15
Which Firewall?


I just installed OpenSUSE a few weeks ago. I have 2 computers (mine & my wife's) & a 2Wire 1000HW wireless router/DSL Modem.
My question is this: which firewall should I use? The one built into the router, the one that in YaST, or another one?
 
Old 05-08-2006, 04:58 PM   #2
pljvaldez
LQ Guru
 
Registered: Dec 2005
Location: Somewhere on the String
Distribution: Debian Wheezy (x86)
Posts: 6,094

Rep: Reputation: 281Reputation: 281Reputation: 281
Both. I'm sure it's a bit of an overkill, but that's what I do at home. That way it allows me to do some specific firewalling right at the point of entry while also allowing certain services to run on one machine without allowing that service on another (for example my wife uses ICQ, so that port has to be opened up in the router and on her windows box, but since I'm not using ICQ on the linux box, I don't want that port open).

Not sure which one comes with OpenSUSE, but I personally prefer using fwbuilder to build my own custom firewall. As an added benefit, I have a router that I installed a 3rd party firmware on, so I can upload a custom firewall onto it from fwbuilder. Kills two birds with one stone...
 
Old 05-08-2006, 05:13 PM   #3
Brian1
LQ Guru
 
Registered: Jan 2003
Location: Seymour, Indiana
Distribution: Distribution: RHEL 5 with Pieces of this and that. Kernel 2.6.23.1, KDE 3.5.8 and KDE 4.0 beta, Plu
Posts: 5,700

Rep: Reputation: 65
As long as the router is set not to forward any outside ports to the internal lan side then it is pretty safe over-all. But the more security you add the better. At this time I am using a linux box as a firewall DMZ. Then have a store bought wireless router after that to the lan machines. So two firewall routers off the bat and then the machines are running firewalls to protect against drive by wifi. wireless is using mac filtering, ip filteing, wpa as well.I configure my iptables manually with and editor.

Brian1
 
Old 05-08-2006, 05:21 PM   #4
fragos
Senior Member
 
Registered: May 2004
Location: Fresno CA USA
Distribution: Ubuntu 10.10
Posts: 1,466

Rep: Reputation: 51
Two firewalls are far from overkill and give a number of advantages. Every PC should be configured with its own firewall -- the default install. My external firewall is in my Netgear wireless router. The external firewall provides NAT, Network Address Translation, for additional protection of your network. The external firewall will be stricter than those in your PCs. This allows you to have protocol access between PCs without making those protocols visible to the outside world. You can get all of this without any special firewall configuration. Just use DCHP and plug things together. Suse is very good about adjusting your internal firewalls to allow servers like CUPS or NFS that you create for LAN access. WAN access to these servers will require external firewall configuration.
 
Old 05-09-2006, 09:36 AM   #5
drowbot
Member
 
Registered: Dec 2004
Location: Tulsa, OK, USA
Distribution: SUSE, ArchLinux, Gentoo, LFS, Slackware, Fedora
Posts: 100

Original Poster
Rep: Reputation: 15
Thanks for your replies! I'll just leave things as is & customize the firewalls on each machine. Thanks again!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
BSD Firewall vs Linux Firewall ? rootlinux Linux - Security 5 08-29-2007 07:38 AM
using a router with firewall, local firewall waste? Michael_aust Linux - General 1 03-26-2006 08:02 AM
Firewall lets ips which are not in the firewall ... why ? sys7em Linux - Networking 2 06-30-2005 12:50 PM
slackware's /etc/rc.d/rc.firewall equivalent ||| firewall script startup win32sux Debian 1 03-06-2004 09:15 PM
Firewall Builder sample firewall policy file ? (.xml) nuwanguy Linux - Networking 0 09-13-2003 12:32 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > SUSE / openSUSE

All times are GMT -5. The time now is 01:39 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration