[Vuurmuur-users] appreciation

Wed, 15 Nov 2017 23:53:28 -0800 



Just want to say again that Vuurmuur functions marvelously.


I haven't installed rc2 yet but vuurmuur_conf functions normally with 
the existing configuration of rc1.





* I have a watch service that checks audit log for manually changing 
some things around ;-).



I am using (ifconfig) aliases to give my eth0 two virtual device names 
because I feel that's more logically sound,



but iptables actually can't handle :0 names so I do a save and restore 
while filtering out those :0 and :1 labels.


But Vuurmuur handles it fine.



* Iptrafvol can't handle longer device names (interface names) so I have 
a small patch for that too.




Because of the above change I also have to manually (automatically) fix 
the accounting rules though.


One of my 'interfaces' is used for input, the other for forwarding.


So I just remove the forwarding accounting rule for the one, and the 
input accounting rule for the other.


Before removing the distinction.





I also add some custom masquerading rules that I think were hard to do 
in Vuurmuur but I was not sure; but I wanted to have it anyway outside 
of Vuurmuur as well so I think I never bothered...





Currently there is a huge barrage of "samba" break-in attempts, or at 
least connection attempts that wasn't there before.



I don't use ipv6 so I can't comment on that.


Maybe I have said these things before; it is a quiet list ;-).

But I just check the list of firewall packages available for Debian.


There is seemingly nothing that provides an ncurses front-end and 
although there is a Qt application called fwbuilder, and there is a 
modest DBUS/applet system called firewalld,



and there is a bunch of monitoring and analysing systems geared more 
towards larger installations,


with one aimed at just providing basically email reporting,


there appears to be nothing that actually combines "building" and 
"monitoring".


------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Vuurmuur-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/vuurmuur-users














    











					Reply via email to