Marc,
Well there is very good Howto on IPChains on the net. From what I can see that is the best place to start. Or you can get one of the Oreilly books. They have ones on firewalls http://security.oreilly.com/ is the site they have on security. It is a good place to start. http://www.google.com/search?sourceid=navclient&q=linux+security Is from a search I did on Google about security wiht Linux. There is a lot of information from that search. You can do similar searches like this also. Or the other site you can do is linux-firewallools.com S *********** REPLY SEPARATOR *********** On 1/15/2002 at 2:39 PM Marc DVer wrote: >We are going to put in a linux box with IPChains. Also, we are going to >put >in a hardware firewall in relay with the linux box. I know this sounds >paranoid, but we (meaning my company) are in a industry that is targeted by >certain orginizations who have been known to send mail bombs (via snail >mail), so hacking is not something we intend to ignore. > >Seriously, I know the dangers involved, and may get an outside consultant >to >help out. > >Anyone know of a good tutorial for ipchains? > >In terms of the hardware firewall, can someone make any recommendations? >This is for about 15 computers, which will eventually have a dsl >connection, >but right now we have a dial-up. We can't afford a $10,000 solution, but >we >need something reasonably secure and reliable. > >Marc DVer >White Eagle Laboratories, Inc. >----- Original Message ----- >From: "Paula Evans" <[EMAIL PROTECTED]> >To: "Steven Pierce" <[EMAIL PROTECTED]>; "Marc DVer" ><[EMAIL PROTECTED]>; "Clark, Steve" <[EMAIL PROTECTED]>; ><[EMAIL PROTECTED]> >Cc: <[EMAIL PROTECTED]> >Sent: Tuesday, January 15, 2002 2:21 PM >Subject: RE: Do we require a Firewall? > > >> Personally I work with SonicWALL, Raptor (now Symantec's product), and >> Cisco. I also know quite a bit about personal firewalls as well so if >> anyone needs some information - let me know. Not just on a sales level >which >> I have just moved into but truley on an information based level. >> >> Thanks - >> >> Paula Evans >> Interspace Computers >> >> -----Original Message----- >> From: [EMAIL PROTECTED] >> [mailto:[EMAIL PROTECTED]]On Behalf Of Steven Pierce >> Sent: Tuesday, January 15, 2002 1:59 PM >> To: Marc DVer; Clark, Steve; [EMAIL PROTECTED] >> Subject: Re: Do we require a Firewall? >> >> >> >> >> Marc, >> >> I have ZA Pro. I purchased it after I had been using the free version >for >> about 6 months. Well did I make >> a mistake. I will not do so again, I am going to set up a firewall >either >> hardware or Linux. You are correct >> they do not block specific ports. A good friend of mine and I have beat >our >> heads against the wall trying >> to get it to do speicific things. He did figure it out. >> >> It has the WORSE upgrades of any software that I know of. Make a mistake >on >> the install and TRY to do >> so again. FORGET IT. You need to wipe the box clean... >> >> Steve: run away from ZA. Get a linux ipchains (old Name) and use it. It >> can be installed on an >> old 486 without to many problems. Or go buy a firewall like sonicwall or >> the like. >> Again do not use ZA to protect your network. It is not going to help. >> >> >> Steven >> *********** REPLY SEPARATOR *********** >> >> On 1/15/2002 at 1:27 PM Marc DVer wrote: >> >> >I would beg to differ. Though I am by no means an expert on firewalls, >I >> >have some experience wiht ZA Pro. We are currently replacing ZA Pro >> >because >> >one, it refuses to block specified ports (yes, we are on medium >security, >> >yes, I blocked the ports under the customize button under the security >> >tab), >> >and two, their support stinks. I have an support request in to them for >> >over a month and have not heard from them besides receiving an automated >> >reply. >> > >> >Has anyone else seen this with ZA Pro? >> > >> >Marc Dver >> >Head of MIS >> >White Eagle Laboratories, Inc. >> >----- Original Message ----- >> >From: "Clark, Steve" <[EMAIL PROTECTED]> >> >To: <[EMAIL PROTECTED]> >> >Sent: Monday, January 14, 2002 10:15 AM >> >Subject: RE: Do we require a Firewall? >> > >> > >> >> 602 is not all that secure - what you do is to put ZA Pro on the PC >along >> >> with 602 so it reduces the chances of someone getting in. keep in >mind, >> >> since 602 dials up periodically based on use, the IP changes each time >> >you >> >> dial. >> >> >> >> Steve Clark >> >> Clark Systems Support, LLC >> >> AVIEN Charter Member >> >> "Who's watching your network?" >> >> www.clarksupport.com >> >> 301-610-9584 voice >> >> 240-465-0323 Efax >> >> >> >> The data furnished in connection with this document is deemed by Clark >> >> Systems Support, LLC., to contain proprietary and privileged >information >> >and >> >> shall not be disclosed or used for the benefit of others without the >> >prior >> >> written permission of Clark Systems Support, LLC. >> >> >> >> >> >> -----Original Message----- >> >> From: Vishal Mukherjee [mailto:[EMAIL PROTECTED]] >> >> Sent: Monday, January 14, 2002 3:14 AM >> >> To: [EMAIL PROTECTED] >> >> Subject: Re: Do we require a Firewall? >> >> Importance: High >> >> >> >> Thanks to all those how contributed >> >> >> >> to urs queries I would say its a windows NT machine with 602 Lanpro >Proxy >> >> further any site which can test the firewalls working I mean to check >how >> >> powerful is our protection. >> >> >> >> ----- Original Message ----- >> >> From: "Vishal Mukherjee" <[EMAIL PROTECTED]> >> >> To: <[EMAIL PROTECTED]> >> >> Sent: Monday, January 14, 2002 10:09 AM >> >> Subject: Do we require a Firewall? >> >> >> >> >> >> > Hi all, >> >> > I am a newbie and want a few suggestions and help? >> >> > we are a small organization with around 15 terminals. we are >connected >> >to >> >> > the internet through a dialup connection to the internet. >> >> > One server serves us as a proxy server and all the other computers >on >> >the >> >> > network browse using a proxy server. My questions are:- >> >> > >> >> > 1. Do we need a firewall? >> >> > 2. which firewall will u gurus suggested? >> >> > >> >> > I would prefer a software firewall if suggested by you all.. >> >> > >> >> > Please suggest me? >> >> > >> >> > Thanks & Regards >> >> > ~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~ >> >> > Vishal Mukherjee >> >> > IRSSL Vashi >> >> > 91.022.7896004.155 (voice) 022.7896020(fax) >> >> > ~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~ >> >> > >> >> > >> >> > Visit Our Cement Site at http://cement.indorama.com >> >> > Our Software Site at http://www.irssl.com >> >> > >> >> > >> >> > _______________________________________________ >> >> > Firewalls mailing list >> >> > [EMAIL PROTECTED] >> >> > http://lists.gnac.net/mailman/listinfo/firewalls >> >> >> >> >> >> Visit Our Cement Site at http://cement.indorama.com >> >> Our Software Site at http://www.irssl.com >> >> >> >> >> >> _______________________________________________ >> >> Firewalls mailing list >> >> [EMAIL PROTECTED] >> >> http://lists.gnac.net/mailman/listinfo/firewalls >> >> _______________________________________________ >> >> Firewalls mailing list >> >> [EMAIL PROTECTED] >> >> http://lists.gnac.net/mailman/listinfo/firewalls >> >> >> > >> >_______________________________________________ >> >Firewalls mailing list >> >[EMAIL PROTECTED] >> >http://lists.gnac.net/mailman/listinfo/firewalls >> >> >> >> _______________________________________________ >> Firewalls mailing list >> [EMAIL PROTECTED] >> http://lists.gnac.net/mailman/listinfo/firewalls >> > >_______________________________________________ >Firewalls mailing list >[EMAIL PROTECTED] >http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
