Re: linux firewall

[Blaise St-Laurent <bstlaurent () okiok com>]

I totally agree here, and i think you should look at what makes you  
think you want linux more then any other firewall.

That being said, i've had good luck with:

Astaro firewall (www.astaro.com)

Mandrake Simple Network Firewall (www.mandrakelinux.com)

Astaro is a more full featured firewall, but Mandrake'll get you up and  
running fast.

I personnally build a stripped down linux box and use shorewall  
(shorewall.sf.net) , but that's just me. There are plenty of tools for  
administering shorewall (it was used as the default firewall on a  
couple of distros, it may still be) it's easy to configure, fairly  
flexible, and actively developped.


On Monday, July 7, 2003, at 11:15  PM, Paul Robertson wrote:

> On Mon, 7 Jul 2003, Gareth Slaven wrote:
>
> > Hi there ...
> >
> > I am trying to find a out of the box linux firewall with proper Admin  
> > tools
> > etc ... anyone got any ideas?
>
> Choosing the OS before figuring out what security policy to enforce,  
> and
> what mechanisms to enforce it with is putting the cart before the  
> penguin.
>
> You should choose a firewall that supports your security policy and
> network architecture with some strategic vision sprinkled in.  Lots of
> commercial products are Linux-based, especially in the appliance  
> market.
>
> You should also look at _what_ you're protecting and try to make the
> network more hetrogeneous, so if you plan on protecting lots of Linux
> systems, you might look at a BSD-based solution.
>
> Paul
> ----------------------------------------------------------------------- 
> ------
> Paul D. Robertson      "My statements in this message are personal  
> opinions
> proberts () patriot net      which may have no basis whatsoever in fact."
> probertson () trusecure com Director of Risk Assessment TruSecure  
> Corporation
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () honor icsalabs com
> http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Blaise St-Laurent
Senior Security Architect
613-266-4258

____________________________________________________________________
Okiok Data  http://www.okiok.com   (450) 681-1681
Solutions de sécurité d'entreprise et d'affaires électroniques
Enterprise and e-business security solutions

This e-mail message (including attachments, if any) is intended for the  
use
of the individual or entity to which it is addressed and may contain
information that is privileged, proprietary, confidential and exempt  
from
disclosure. If you are not the intended recipient, you are notified  
that any
dissemination, distribution or copying of this communication is strictly
prohibited. If you have received this communication in error, please  
notify
the sender and erase this e-mail message immediately.

Le présent message électronique (y compris les pièces qui y sont  
annexées,
le cas échéant) s'adresse au destinataire indiqué et peut contenir des
renseignements de caractère privé ou confidentiel. Si vous n'êtes pas le
destinataire de ce document, nous vous signalons qu'il est strictement
interdit de le diffuser, de le distribuer ou de le reproduire. Si ce  
message
vous a été transmis par erreur, veuillez en informer l'expéditeur et le
supprimer immédiatement.


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards