RE: Firewall options- which way to go

["Trevor Cushen" <Trevor.Cushen () sysnet ie>]

I love this firewall for Linux,  works with Ipchains.  He may have
upgraded or added to it for iptables.

http://www.simonzone.com/software/guarddog/

Also webmin has a great module for configuring both ipchains and
iptables.  But I still like the GuardDog setup.
www.webmin.com

Both are GUI based which might be best if you are fairly new to Linux.
It certainly makes life easier.


Trevor Cushen
Sysnet Ltd

www.sysnet.ie
Tel: +353 1 2983000
Fax: +353 1 2960499



-----Original Message-----
From: Arjen De Landgraaf [mailto:arjen.de.landgraaf () cologic co nz] 
Sent: 15 October 2002 22:40
To: 'Leon Pholi'
Cc: 'security-basics () securityfocus com'
Subject: RE: Firewall options- which way to go


Hi Leon,

You find IPTables, Linux firewalls,
firewall design etc info at: www.e-secure-db.us

Site is organised into folders, most relevant ones are:

http://www.e-secure-db.us/dscgi/ds.py/View/Collection-933
IPTables

http://www.e-secure-db.us/dscgi/ds.py/View/Collection-1539
Tools - IPTables  
 
http://www.e-secure-db.us/dscgi/ds.py/View/Collection-1577
Securing Linux / Unix

http://www.e-secure-db.us/dscgi/ds.py/View/Collection-572
Firewalls, VPN and Secure Routers Product Comparisons and Tests 

http://www.e-secure-db.us/dscgi/ds.py/View/Collection-1443
Information on Firewall Design and Management 

Etc.
Good luck and let me know how you go.

Arjen
New Zealand


-----Original Message-----
From: Leon Pholi [mailto:L.Pholi () secureinteractive com]
Sent: Monday, 14 October 2002 1:33 p.m.
To: security-basics () securityfocus com
Subject: Firewall options- which way to go


 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

I am looking at options for setting up a Linux firewall for our company.
Although I am a relative newbie to Linux, I'm not afraid to get my
'hands dirty' with IPTables etc. 

I have a couple of questions and would appreciate all comments.

1) Is it better to use a purpose built distribution such as Smoothwall,
IPCop or firewall specific ones from Redhat, Mandrake, SuSE etc, or,
would it be better to use a standard distro & built it from scratch
(bearing in mind I haven't yet recompiled a kernel but I'm willing to
give that a go too)? 

2) If building from scratch, kernel version 2.4 supports both ipchains &
iptables (newer)- does anyone have a strong view on using one over the
other? If using a purpose built one, does anyone have any experienced
based preferences?

3) Other than just suggesting to do a google search, are there any
resources (a simple step by step howto would be good) you would
recommend for the suggested approach?

All help greatly appreciated. Thanks in advance.

Leon

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.4

iQA/AwUBPaoQ+23X5duwk+XvEQKyUQCfcI+YuA2CoEgTKPdMkacPHhc0MWQAoKid
reavCfqXEnT7pygVQ+8nO9P4
=kL3I
-----END PGP SIGNATURE-----


**************************************************************************************

This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to whom they are addressed. 

If you have received this message in error please notify SYSNET Ltd., at
telephone no: +353-1-2983000 or postmaster () sysnet ie

**************************************************************************************