[nzlug] Firewall ruleset check...
Cliff Pratt
enkidu at cliffp.com
Wed May 14 19:05:26 NZST 2008
Peter wrote:
> Damn, ctrl something a'ruther sends emails.
>
> ... It started off a cut and paste ruleset from various sources, then i
> worked through much of the iptabels(sp) tutorial:
> http://iptables-tutorial.frozentux.net/iptables-tutorial.html
>
> which while rather dry, i think one does tends to absorb something by
> osmosis if nothing else.
> I kind of enjoyed trying to understand something of whats underneather
> the output of things like firestarter, firehol, arno etc. But im still
> naive enough to know that a ilttle knowledge is bad thing.
>
I'd advise using something like stonewall, which, as many of these tools
are, is an iptables rules generator under the hood. Why re-invent the
wheel when you can use someone else's expertise.
Cheers,
Cliff
More information about the NZLUG
mailing list