One of the easier-to-use and reliable firewall scripts that I've found is pmfirewall.
You can download the latest version free at www.pointman.org
It is a very flexible script that loads ipchains rules each time a connection is made
to the internet, or the interface is brought up. I supports masquerading for internal
hosts and has a lot of internal otptions that allow you to open and close a variety of
ports for various servers and services.
I use it on my home firewall (RH6.1) without any problems. Since Mandrake is a Red Hat
port, you should not have any problems.
You may also want to look at portsentry (look to freshmeat.net for the location) which
is a port scanner detection utility. Also very versatile, and reliable. This will
protect you from stealth scans and other hacks.
Third, you may wish to drop the telnet idea, and go with ssh (also, look to
freshmeat). It uses a 768bit encryption key and renews that key at every login (or at
intervals whichever is longer). There is a utility called PuTTY (also SecureShel) that
works on a windows machine to access ssh on a Linux/Unix machine. Far more secure than
telnet.
As long as you have an IP addres, you machine will be locate-able on the internet. But
with a firewall utility, and something such as portsentry you can make the openings
(ports) seem to disappear.
Portsentry will also update the ipchains rules and lock out any hosts that appear to
be dangerous. Entries are made to the hosts.deny file that include host name and IP
address. Once that is done your machine almost does disappear--atleast as far as that
particular host is concerned.
--Greg
----- Original Message -----
From: Joe Brault <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, July 23, 2000 12:33 PM
Subject: [newbie] Network Firewall Question
> Hello all,
>
>
> In the last few days I have seen many postings on the list pertaining to
> different firewall software that is based on Linux. I am looking to set up
> my own firewall for my computers at college, and I am wondering which of
> these programs I have heard about would work better... So far I have heard
> of Freesco, and Fireplug.
>
> I would like to create a firewall (separate computer if that is better)
> that will protect my windows and Linux boxes ( I have a dual boot desktop
> and laptop). I would still like to be able to use the Internet fully and
> play games, as well as Telnet or FTP into the other box from somewhere on
> campus (with my laptop) if I ever need to.
> As far as I can tell, my university (Southern Illinois University at
> Carbondale) has no firewall for the students connected to the network... I
> know very little about networks and how they work, so even after I have read
> the manuals on Freesco and Fireplug, I am still very lost as to how to
> proceed. I would ideally like my computers to not be seen by the outside
> world :) If anyone knows which program (freesco or fireplug, or another
> one) would do what I am looking for, I would greatly appreciate the input.
> Also, some quick info on what my firewall box should have in it would be a
> plus :) Thanks in advance and sorry for the long posting!
>
> - Joe :)
>
>
> ------------------------------------------
> | Have you petted your penguin today? :) |
> | Registered Linux user #183248 |
> ------------------------------------------
>
> ________________________________________________________________________
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
>
*********************************************
Want free email? Sign up at http://www.freeze.com !
*********************************************
Want free email? Sign up at http://www.freeze.com !
