Guess I should have made that a little clearer ;). I am wanting to figure this out from scratch. I am trying to break out of the *Windows Only* frame that I am in concerning security that I recommend to clients. Right now, I recommend Raptor, Firewall-1, or MS Proxy depending upon the situation. Being able to configure ipchains from scratch would be a great solution for clients on a limited budget. Thanks for the reply though! CK -----Original Message----- From: robert@texas.net [mailto:robert@texas.net]On Behalf Of Robert C. Paulsen, Jr. Sent: Tuesday, March 14, 2000 8:04 PM To: KULISHdotCOM Subject: Re: [suse-security] *WANTED: ipchains guru* KULISHdotCOM wrote:
Looking for someone to take a look at my ipchains script. I don't want to post it on the list as it is kind of long. A little background is in
order.
I want to setup an ipchains firewall to do the following:
Deny everythind that is not explicitly allowed.
I have a server sitting behind it that will host pop3, smtp, www, and ftp
so
I will need to forward all these ports.
I want to allow everyone on the local network to ANYTHING out on the internet.
I want to log any denials and protect against IP spoofing (and anything else that might be dangerous).
If anyone is willing to help, I will send them my annotated script to take a look at. I do realize that some things are missing (probably the stuff I need help on).
I have read all the HOW-TOs that I can find but something isn't clicking.
I would start here: ftp://ftp.suse.com/pub/suse/i386/update/6.3/sec1/firewals.rpm It will take a little thought and work to get it set up, but not as much as trying to do the whole thing yourself. -- ____________________________________________________________________ Robert Paulsen If my return address contains "ZAP." please remove it. Sorry for the inconvenience but the unsolicited email is getting out of control.