When I run "lsmod" is see that ipchains is loaded. However, reading a few articles about nix firewalls, most focus on iptables. I would like to employ a basic set of rules and sites and build from there. I am very much the novice/newbie to building firewalls and would like to get a heads up as to the advantages/disadvantages to these protocols TIA, Curtis -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com -------------------------------------------------------
On Saturday 29 September 2001 11:51 am, Curtis Rey wrote:
When I run "lsmod" is see that ipchains is loaded. However, reading a few articles about nix firewalls, most focus on iptables. I would like to employ a basic set of rules and sites and build from there. I am very much the novice/newbie to building firewalls and would like to get a heads up as to the advantages/disadvantages to these protocols
Both Linux Magazine and Linux Journal have had articles about migrating to iptables in the past month. You can probably find the articles on their web site. -- +----------------------------------------------------------------------------+ + Bruce S. Marshall bmarsh@bmarsh.com Bellaire, MI 09/29/01 12:09 + +----------------------------------------------------------------------------+ "The alphabet will create forgetfulness in the learners' souls. They will trust the written characters and not remember themselves." - Socrates
* Curtis Rey;
When I run "lsmod" is see that ipchains is loaded. However, reading a few articles about nix firewalls, most focus on iptables. I would like to employ a basic set of rules and sites and build from there. I am very much the novice/newbie to building firewalls and would like to get a heads up as to the advantages/disadvantages to these protocols
My personal opinion since I am a newcomer in this Ipchains plus 2.2.19 kernel if you will be using them for production servers. IMO this is why the SuSE firewall CD is also running 2.2.19 On the other hand iptables provide stateful (dynamic) packet filtering which has many advantages also some other paramaters like --match string which can be used to filter "default.ida" requests. If novice ob firewalls use SuSEfirewall for learning. SuSEfirewall version 5.0 is for ipchains and SuSEfirewall2 is for iptables. Have a look at them at Marc's page at http://www.suse.de/~marc Also I was recommended at suse-security list " Building Internet Firewalls" from O'reilly. I found it very helpfull in understanding the needs for security and firewalling. HTH -- Togan Muftuoglu
participants (3)
-
Bruce Marshall
-
Curtis Rey
-
Togan Muftuoglu