Sorry, I'm a novice :)
You could increase security by limiting traffic to exclude forged or invalid packets, and limit outbound traffic appropriately.
How do I do that?
Logging would probably also be useful.
How do I do that?
You may find that using a higher level tool, of which there are a wide range in Debian, would make it easier to achieve this goal.
Do you mean ipfwadmin? Thanks, Jacob