Re: firewall

To: debian-user@lists.debian.org
Subject: Re: firewall
From: lina <lina.lastname@gmail.com>
Date: Thu, 5 Jul 2012 11:51:42 +0800
Message-id: <[🔎] CAG9cJm=EAop_VAorE8X9CB8V3in2mcQxCmNYHE5ShD87jKG3Vw@mail.gmail.com>
In-reply-to: <[🔎] 20120704213108.GA28931@desktop>
References: <[🔎] CAG9cJm=YgTrfu7ayQFQH-7--iVUiMdEHE1sKYj7Ds7+k8_ZRhg@mail.gmail.com> <[🔎] 20120704213108.GA28931@desktop>

On Thu, Jul 5, 2012 at 5:31 AM, Brian <ad44@cityscape.co.uk> wrote:
> On Wed 04 Jul 2012 at 11:19:06 +0800, lina wrote:
>
>> I don't know which firewall (http://wiki.debian.org/Firewalls) I
>> should choose.
>>
>> Thanks ahead for recommendation, and it will be very nice if you tell
>> me why you recommend this one.
>
> You can either manipulate netfilter directly with iptables or have
> something else (like the suggested ufw or gufw) do it for you. using
> iptables is not for the faint hearted.
>
> Alternatively, you could detail why you need a firewall. The only reason
> you have given up to now is fear. This leads to strange things being
> done: for example, your 'iptables -L' output in another post shows
> connections to a webserver and sshd being accepted from anywhere, as are
> ICMP requests. Nothing wrong with that. But why bother with an iptables
> rule if that is what you had in the first place?
Indeed, I found actually the system is no much difference than before
under current iptable configuration.
>
>
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: [🔎] 20120704213108.GA28931@desktop">http://lists.debian.org/[🔎] 20120704213108.GA28931@desktop
>

Reply to:

References:
- firewall
  - From: lina <lina.lastname@gmail.com>
- Re: firewall
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: Re: Small xorg?
Next by Date: Re: minimal HTTP server recommends
Previous by thread: Re: firewall
Next by thread: Re: firewall
Index(es):
- Date
- Thread