Hello! i read the iptables howto, the firewall howto, etc...i am sure i got it, but i don´t wanna risk my shiny server. Does anybody know a good firewall script for iptables? it quite different t read the stuff or to build one up and put everything in it ;P Thank you! Spiekey
Uhmm... this question sounds like: Do you know a good car to drive? In other words: if you know what your script should do, then you can define policies and rules. Just applying a script to your machine without knowing what it is supposed to do will rarely yield the results you expect. And yes, there is quite a difference between reading all the theory and then implementing it. But I can promise that even "trying" to implement your own script will teach you more about the topic than any howto/faq/manpage reading :-) Which doesn't mean at all that reading all the documentation is a waste of time. Just reading alone won't educate you enough. Tip of the day: Go to www.altavista.com and type in +linux +iptables +script I get 1160 results. One of the links which I can imagine being a reasonable starting point for you is: http://mason.stearns.org/ another one would be http://freshmeat.net/projects/mothafirewall/ and a 3rd one http://www.linux-firewall-tools.com/linux/firewall/index.html At least tools like the ones you'll find on these pages helped me getting started designing my own scripts. Learn from them, use what's there and make them better :-) HTH, Erwin --- spiekey wrote:
Hello!
i read the iptables howto, the firewall howto, etc...i am sure i got it, but i don´t wanna risk my shiny server. Does anybody know a good firewall script for iptables?
it quite different t read the stuff or to build one up and put everything in it ;P
Thank you!
Spiekey
* spiekey (spiekey@hotmail.com) [011024 09:50]:
i read the iptables howto, the firewall howto, etc...i am sure i got it, but i don´t wanna risk my shiny server. Does anybody know a good firewall script for iptables?
There's Marc Heuse's latest SuSEfirewall script: http://www.suse.de/~marc/SuSEfirewall2-1.7.tar.gz -- -ckm
participants (3)
-
Christopher Mahmood
-
Erwin Zierler - stubainet.at
-
spiekey