Re: Firewall Utilities

To: debian-user@lists.debian.org
Cc: debian-user@lists.debian.org
Subject: Re: Firewall Utilities
From: Jerome BENOIT <jgmbenoit@mailsnare.net>
Date: Mon, 17 Nov 2008 13:31:58 +0800
Message-id: <[🔎] 492101CE.7040300@mailsnare.net>
Reply-to: jgmbenoit@mailsnare.net
In-reply-to: <[🔎] 4920A796.7010904@tacocat.net>
References: <[🔎] 491F1C1F.9000404@tacocat.net> <[🔎] 20081115235648.GB6273@titan.hooton> <[🔎] 492045DB.6030803@mailsnare.net> <[🔎] 4920A796.7010904@tacocat.net>

Hello List,

FireHOL is well documented, it is written in bash,
it is intuitive to configure and to maintain,
and it comes with options that produce a template
for your current box, that allow to check your
configuration, and to read the effective iptable.
Furthermore, it is maintained,

The cons: it is written in bash: no GUI (I do not care because
I prefer scripts), and obviously bash must be installed (what
is easy to get on a regular box, but not on an embedded box as a router).

For further details:

firehol.sourceforge.net

I use it on my (Debian Lenny) laptop and
for a (Debian Etch) cluster (number cruncher).

hth,
Jerome


Tom Allison wrote:

Jerome BENOIT wrote:
firehole is great too !
Can you elaborate a little bit on pro/cons?
Right now I'm trying to get through shorewall docs and it's "OK" butthey could use a better initiation/orientation starting point. I'm onlynow grasping the different roles that zone/policy/rule play.


--
Jerome BENOIT
jgmbenoit_at_mailsnare_dot_net

Reply to:

References:
- Firewall Utilities
  - From: Tom Allison <tom@tacocat.net>
- Re: Firewall Utilities
  - From: "Douglas A. Tutty" <dtutty@vianet.ca>
- Re: Firewall Utilities
  - From: Jerome BENOIT <jgmbenoit@mailsnare.net>
- Re: Firewall Utilities
  - From: Tom Allison <tom@tacocat.net>

Prev by Date: Re: multicast arp
Next by Date: Re: Looking for SIMPLE MTA
Previous by thread: Re: Firewall Utilities
Next by thread: Re: Firewall Utilities
Index(es):
- Date
- Thread