Hi everyone. We are a small international school with 22 computers on a lan with 7.3, samba, squid and a fast adsl internet connection. We cannot get SuSE firewall2 to let anything happen at all. It blocks everything. Everything works perfectly without the firewall. We have to make a decision soon as to the amount of time spent trying to get the firewall working (thanks to the patience of all on a related thread on this list) and whether we need it or not. What will happen if we don't have it? Thanks, Steve.
On Friday 19 April 2002 10:39, steve wrote:
Hi everyone.
We are a small international school with 22 computers on a lan with 7.3, samba, squid and a fast adsl internet connection. We cannot get SuSE firewall2 to let anything happen at all. It blocks everything. Everything works perfectly without the firewall. We have to make a decision soon as to the amount of time spent trying to get the firewall working (thanks to the patience of all on a related thread on this list) and whether we need it or not.
What will happen if we don't have it?
Thanks, Steve.
Sometimes nothing will happen.... then again... I run Smoothwall ( http://www.smoothwall.org ) as my firewall and internet router for a small home network. I couldn't get SuSE Firewall2 going either. My SNORT log (keeps track of hack attempts) on the Smoothwall machine keeps a record of intrusion attempts 24 hours per day. Some days there are more attempts than others. The most common attempts I get on my system are Port Scans, and Back Orifice scans. Generally, most scans are looking for open ports on Windows machines, but open ports on a Linux machine are just as vulnerable. A firewall can be looked at as a must have these days. As a suggestion... if you are having trouble with Firewall2, take a look at other options. The beauty of Linux is that you are not limited to one solution. Smoothwall works nicely if you have a spare 486Dx or P1 laying about. PMFirewall ( http://www.pmfirewall.com ) works nicely as well as a replacement for SuSE Firewall2 when you can't get things working. C.
I ended up using clarkconnect. (www.clarkconnect.org) I assume it is similar to smooth wall and was fairly simple to set up and administer. Lots of stuff hiting the wall for IIS. will
Hello Steve, First of all I recommend you subscribe to suse-security@suse.com. You will get more help. Second, a short answer... Basically everything connected to the out world is open to everyone. Even if you think your samba, your telnet, whatever services you are running, are secured with uuser login and so on... don't rely. Just a few services are secure enough (e.g. SSH). On Friday 19 April 2002 10:39, steve wrote:
Hi everyone.
We are a small international school with 22 computers on a lan with 7.3, samba, squid and a fast adsl internet connection. We cannot get SuSE firewall2 to let anything happen at all. It blocks everything. Everything works perfectly without the firewall. We have to make a decision soon as to the amount of time spent trying to get the firewall working (thanks to the patience of all on a related thread on this list) and whether we need it or not.
What will happen if we don't have it?
Don't wanna scare you at all.. I don't know what will happen. I know what could happen. Some people can get inside your server and benefit from your server / ADSL connection. Possible applications area: - Sending SPAM from your server - Place FTP server full pornography - Use your computer to attack other computers ... And once someone has access to the server that is connected to Internet and to your local network they can start playing with your school network (e.g. sniffing your internal network). I don't think yours is a simpe home network. I recommend you get fast a good book on internet security and firewalls or a security consultant. Regards, Pep Serrano.
I think that the firewall part was answered, but on another tact, one of your biggest exposures is from inside. I think you need to make sure that any financial, personal, and other information is protected, not only from the Internet, but also from internal uses. Without getting into network design, teachers and administrators need to be educated to this. On 19 Apr 2002 at 10:39, steve wrote:
Hi everyone.
We are a small international school with 22 computers on a lan with 7.3, samba, squid and a fast adsl internet connection. We cannot get SuSE firewall2 to let anything happen at all. It blocks everything. Everything works perfectly without the firewall. We have to make a decision soon as to the amount of time spent trying to get the firewall working (thanks to the patience of all on a related thread on this list) and whether we need it or not.
What will happen if we don't have it?
Thanks, Steve.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com
-- Jerry Feldman Portfolio Partner Engineering 508-467-4315 http://www.testdrive.compaq.com/linux/ Compaq Computer Corp. 200 Forest Street MRO1-3/F1 Marlboro, Ma. 01752
On Fri, Apr 19, 2002 at 10:39:22AM +0200, steve beat on the keyboard:
Hi everyone.
We are a small international school with 22 computers on a lan with 7.3, samba, squid and a fast adsl internet connection. We cannot get SuSE firewall2 to let anything happen at all. It blocks everything. Everything works perfectly without the firewall. We have to make a decision soon as to the amount of time spent trying to get the firewall working (thanks to the patience of all on a related thread on this list) and whether we need it or not.
What will happen if we don't have it?
Thanks, Steve.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Have you tried configuring it? Look at /etc/rc.config.d/firewall2.rc.config. Open up the ports you need. I have come across two boxes which have been rooted. Are you on non-routable network? What is doing the routing? -- _ _ __ _____ _____ ___| |_ | '__| / __\ \ /\ / / _ \/ _ \ __| -o) | | _ \__ \\ V V / __/ __/ |_ /\\ |_|(_) |___/ \_/\_/ \___|\___|\__|_\_v rsweet@garagenetworks.net "unix soit qui mal y pense."
participants (6)
-
Clayton Cornell
-
deadwill@cryogen.com
-
Jerry Feldman
-
Pep Serrano
-
Robert Sweet
-
steve