[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Might be off topic. Are computers with168.192.x.xsafe from Internet?
- Subject: Re: [cobalt-security] Might be off topic. Are computers with168.192.x.xsafe from Internet?
- From: "jwk at Zone Alpha" <jwk@xxxxxxxxxxxxx>
- Date: Mon, 4 Jun 2001 21:28:08 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
----- Original Message -----
From: Thomas Ashcraft <thomasa@xxxxxxxxx>
> James,
> I would like to know how it goes when setting up your Linux firewall. I am
> also looking into doing the same. Any info would be appreciated!
>
Thomas,
When I get around setting it up, I might report back. But, it's supposed to
be very simple... at least to initially set it up. Just a plain Linux box
with two NIC's. Using IPCHAINS or some other packet filtering tools, you
just define how your firewall is going to work. Setting up and twicking the
rule set is probably the hardest part. Even this can be done relatively
easily by utilizing some rule generation tools such as the one found online
at http://www.linux-firewall-tools.com/linux/ Of the two NICs, eth0 might
be the Internet side and eth1 might be private side. You just specify how
the IP packets are allowed to travel. You have *full* control and a very
elegant solution.
But of course, Linksys Etherfast router allows NAT, DMZ etc. for simple
firewalling. I plan to use this one until I build a Linux firewall. It
seems that those big name firewalls costing couple of thousand dollars are
way overpriced.
James Kim