Mailinglist Archive: opensuse-security (195 mails)

< Previous Next >
RE: [suse-security] *WANTED: ipchains guru*
  • From: "KULISHdotCOM" <noc@xxxxxxxxxx>
  • Date: Tue, 14 Mar 2000 20:11:53 -0600
  • Message-id: <NDBBIHIACLHJDPFBKCCMCEJKCAAA.noc@xxxxxxxxxx>
Guess I should have made that a little clearer ;).

I am wanting to figure this out from scratch. I am trying to break out of
the *Windows Only* frame that I am in concerning security that I recommend
to clients. Right now, I recommend Raptor, Firewall-1, or MS Proxy
depending upon the situation. Being able to configure ipchains from scratch
would be a great solution for clients on a limited budget.

Thanks for the reply though!


-----Original Message-----
From: robert@xxxxxxxxx [mailto:robert@xxxxxxxxx]On Behalf Of Robert C.
Paulsen, Jr.
Sent: Tuesday, March 14, 2000 8:04 PM
Subject: Re: [suse-security] *WANTED: ipchains guru*

KULISHdotCOM wrote:
> Looking for someone to take a look at my ipchains script. I don't want to
> post it on the list as it is kind of long. A little background is in
> I want to setup an ipchains firewall to do the following:
> Deny everythind that is not explicitly allowed.
> I have a server sitting behind it that will host pop3, smtp, www, and ftp
> I will need to forward all these ports.
> I want to allow everyone on the local network to ANYTHING out on the
> internet.
> I want to log any denials and protect against IP spoofing (and anything
> that might be dangerous).
> If anyone is willing to help, I will send them my annotated script to take
> look at. I do realize that some things are missing (probably the stuff I
> need help on).
> I have read all the HOW-TOs that I can find but something isn't clicking.

I would start here:

It will take a little thought and work to get it set up, but not as
much as trying to do the whole thing yourself.

Robert Paulsen
If my return address contains "ZAP." please remove it. Sorry for the
inconvenience but the unsolicited email is getting out of control.

< Previous Next >
Follow Ups