[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Iptables firewall

Just for simplicity, if I have Bastille and I want to try 'filehol' is it
better to stop Bastille or I can run both of them at the same time?

> On 19 Jul 2004, Sykotic wrote:
>> Does anyone know where I could find like a tutorial or reference for
>> using IPTables to build a firewall for just 1 pc? All the documents I've
>> found mainly covered the use of IPTables for routing on a gateway
>> machine...and really just glossed over the firewalling aspect.
> Well, most people build their security as "crunchy on the outside,
> squishy in the middle" -- they only put a firewall on the outside.
> That said, there really isn't a great deal of difference between
> firewalling a single machine and firewalling a network on a router.
> Packets destined to the local machine come through the 'INPUT' chain,
> rather than the 'FORWARD' chain, but are otherwise identical.
> Personally, I use the 'filehol' script, available as part of testing and
> unstable, or at <http://firehol.sf.net/>, which is a nice wrapper over
> iptables.
> It also has a "wizard" that will generate a template rule file that
> allows access to the services that are already running. That can be a
> nice head-start on getting things working.
>      Daniel
> --
> Sometimes a scream is better than a thesis.
>         -- Ralph Waldo Emerson
> --
> To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org

Jose Marrero <jmm19@humboldt.edu>
Key fingerprint = 1259 79C5 D922 EC07 47CC  724709C6

Reply to: