On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: | | dman wrote: | | > On Tue, Aug 21, 2001 at 01:52:41PM -0400, Han Yoo wrote: | > | Can someone recommend a decent and easy to use firewall program for | > | Debian? | > | (Something like ZoneAlarm...?) | > | > Which kernel do you have? | > | > Take your pick from 'iptables' 'ipchains' and 'ipfwadm' depending on | > kernel version. (BTW, I've never seen ZoneAlarm, only heard the name | > before) | | Basically, I have the 2.2.19 kernel.
Then you will use ipchains. If/When you upgrade to the 2.4 series you will need to convert to iptables (or use the backwards compatibility module). | Is any of the programs that you mentined easy enough to be utilized | by a Debian novice without going into the heavy-duty configuration? You could install the 'ipmasq' package. It provides a basic ipchains configuration, though it is geared towards masquerading connections from an internal LAN. There is an excellent IPCHAINS Howto on linuxdoc.org that explains packet filtering, ipchains, and how to use it. I don't know how much protection the ipmasq package will provide though -- I still had CodeRed requests in my apache logs. (BTW, for those that are listening -- I didn't know enough about ipchains at the time to even check the configuration) HTH, -D
