Firewall opinion please
Scott Ryan
scott at staff.telkomsa.net
Wed Sep 28 06:34:38 UTC 2005
This one time, at band camp, Paul Smith wrote:
> On 9/27/05, Scot L. Harris <webid at cfl.rr.com> wrote:
> > > Is it better to use the built in firewall with rhfc4 or use something
> > > like firestarter?
> > >
> > Either one is fine. I believe firestarter still uses iptables it just
> > puts an interface on it that is easier to use for some.
> >
> > So it all depends on what you prefer and how comfortable you are with
> > iptables. Most people don't require very complex rules so the defaults
> > are most likely sufficient. Those that need more complex rules might
> > benefit from having an easier interface to write those rules.
> >
> > Just keep it simple. Complex rules sets have a way of leaving
> > unexpected holes if you are not careful.
>
> I would like to add that Shorewall can be easily configured with
> Webmin as a GUI.
>
> Paul
The best GUI based firewall management application in my opinion is fwbuilder. It looks like it is designed on Checkpoints FW1 GUI. The good thing about it is that you can manage many firewalls with it. It uses ssh to apply rules to remote machines.
>
>
--
slr,
ISP Systems Specialist
Telkom Internet
#qmail-ldap @ irc.freenode.net
This message has been made from 100% recycled bits.
----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GIT/MU/E d? s+:+ a- C++++>+++++ USL++++$ P++++ !E(---)W+@ !N
o?(--) K? !w(---) O- M+ V PS+@ PE Y-- PGP++>+++ !t(---) !5 !X
R-- !tv b(++) DI++ !D(----) G+++>++++ e++>* h----(*) r+++ y++++
-----END GEEK CODE BLOCK------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20050928/59285d0b/attachment-0002.bin
More information about the users
mailing list