Re: Firewall for use with cable modem?

To: ktb <x.y.f@home.com>
Cc: Debian-User <debian-user@lists.debian.org>
Subject: Re: Firewall for use with cable modem?
From: Manegold <manegold@uni-trier.de>
Date: Wed, 20 Dec 2000 09:27:18 +0100
Message-id: <[🔎] 3A406D66.25AF080C@uni-trier.de>
Reply-to: manegold@uni-trier.de
References: <[🔎] 20001220000214.078504d1.gsmh@gmx.co.uk> <[🔎] 20001219192119.A27501@debian.local>

ktb wrote:
> 
> On Wed, Dec 20, 2000 at 12:02:14AM +0000, Phillip Deackes wrote:
> > I have spent much of the day getting more and more confused about
> > firewalls and Linux. I am having a cable modem installed soon and want my
> > system to be secure. I have only the one computer, and am running Woody.
> >
> > Is there a free (or low-cost) firewall which will work on Debian? I don't
> > feel confident enough to be messing with ipchains and such. I had a look
> > at Storm Firewall, but this is expensive at 99USD and seems way over the
> > top for what I would need on a single workstation.
> >
> > I downloaded gfcc, but don't understand what to do with it. I have read
> > the Firewall HOWTO but I really don't grasp much of it. I am embarassed to
> > admit that I really want an out-of-box solution - something I can install
> > and perhaps tweak a little as I get more confident. I don't do anything
> > out of the ordinary on the Internet, just the usual mail, news and web. I
> > occasionally use ReadAudio and ftp, but not a lot else.
> >
> >
>         Install something like "pmfirewall" or "seawall."  I've used
>         pmfirewall before and it is simple to set up.  Basically what
>         these two scripts do is write ipchains rules for you based on
>         some of the questions you answer.  I don't have any urls' handy
>         but they should be easy to find.  After installing your chains
>         take a look at them and learn from them.  One other thing you
>         might think about is getting a cheap or free 486 and make it
>         your firewall.
>         hth,
>         kent

I used pmfirewall too, but the problem with it is, that it only blocks
certain things it knows about. The default stand is allow (!). In my
opinion that is not so good. It should be deny unless the port is
explicitly opened up. I think that this would be possible via a script
setup too and much better. I don't know "seawall". Maybe that does it
better.
However, if you don't want to learn at least something about ipchains
and some basics about what a firewall can do, then maybe it is ok. But
then you will not know, how much security you got.

just my two cents worth.

Thorsten

Reply to:

Follow-Ups:
- Re: Firewall for use with cable modem?
  - From: "Gary Hennigan" <glhenni@sandia.gov>

References:
- Firewall for use with cable modem?
  - From: Phillip Deackes <gsmh@gmx.co.uk>
- Re: Firewall for use with cable modem?
  - From: ktb <x.y.f@home.com>

Prev by Date: Re: FreeBSD --> Debian
Next by Date: Re: Firewall for use with cable modem?
Previous by thread: Re: Firewall for use with cable modem?
Next by thread: Re: Firewall for use with cable modem?
Index(es):
- Date
- Thread