On Saturday 02 March 2002 11:52 am, Thomas Madhavan wrote: <snip> Most Linux "firewall" apps might properly be considered as frontends to ipchains or iptables (depending on which kernel you use) where the real firewalling takes place. This is as true for Bastille as it is for Firestarter.. InteractiveBastille asks you a bunch of questions as to how your system is set up (and how paranoid you wish to be) and proceeds to write the rules based on what you answer. Firestarter has an additional advantage of watching what is coming in and reporting it to you in realtime as well as doing a domain lookup for you. Most Windows refugees who are used to things like ZoneAlarm, find these features reassuring. The old UNIX or Linux pros are used to looking at system logs to see what is going on. The choice is yours. What you feel most comfortable with is probably best.
If you are looking for scripts which will generate firewall rules for you rather than interactively, try http://www.securityfocus.com/cgi-bin/unix_topics.pl?topic=fwrules -- Robin Lynn Frank Director of Operations Paradigm-Omega, LLC Current Linux kernel 2.4.8-26mdk uptime: 2 hours 1 minutes. (This computer runs on solar power. Do not look for long uptimes.) www.paradigm-omega.com * www.paradigm-omega.net