phunni Posted May 5, 2004 Report Share Posted May 5, 2004 I am currently using firestarter on my server. Trouble is - I have to have X installed in order to use it; even if I actually do tunneling via ssh (I think I'm right in saying that aren't I?) What I'd ideally like is a firewall that's as easy to use and configure, but where all the config is done either via a browser interface or command line. Does anyone know of such a thing? Quote Link to comment Share on other sites More sharing options...
Guest anon Posted May 5, 2004 Report Share Posted May 5, 2004 Yes i do Mr Friendly Englishman :D http://projectfiles.com/firewall/ Quote Link to comment Share on other sites More sharing options...
paul Posted May 5, 2004 Report Share Posted May 5, 2004 shorewall http://www.shorewall.net Quote Link to comment Share on other sites More sharing options...
ac_dispatcher Posted May 8, 2004 Report Share Posted May 8, 2004 Got an old 486 with 12mb of ram? I use Coyote Linux http://www.coyotelinux.com Its my Firewall / Router / DCHP Server I access it via a web browser. 73 day uptime now ..... Quote Link to comment Share on other sites More sharing options...
phunni Posted May 8, 2004 Author Report Share Posted May 8, 2004 I also want to share a printer on the server running the firewall - most firewall distros that I have seen don't seem to support this. I mean it's obviously possible, but I'm not sure how much of a headache it would be... Quote Link to comment Share on other sites More sharing options...
spinynorman Posted May 8, 2004 Report Share Posted May 8, 2004 I've never run a server, but this script at linuxhelp.net might fit the bill... :unsure: Quote Link to comment Share on other sites More sharing options...
Gowator Posted May 8, 2004 Report Share Posted May 8, 2004 phunni take a look at SME server 6. It probably does everything you want and then some.... Quote Link to comment Share on other sites More sharing options...
paul Posted May 9, 2004 Report Share Posted May 9, 2004 or clark connect http://www.clarkconnect.org its the competition to e-smith Quote Link to comment Share on other sites More sharing options...
jlc Posted May 9, 2004 Report Share Posted May 9, 2004 how about iptables? If your still runing gentoo here i a how-to, but would work for any distro. http://forums.gentoo.org/viewtopic.php?t=1...=iptables+howto Quote Link to comment Share on other sites More sharing options...
phunni Posted May 11, 2004 Author Report Share Posted May 11, 2004 phunni take a look at SME server 6. It probably does everything you want and then some.... The system requirements are too high - this is an old Psomething with 32MB RAM Quote Link to comment Share on other sites More sharing options...
Gowator Posted May 11, 2004 Report Share Posted May 11, 2004 Im currently running SME5.6 on a P100 with 96MB RAM. So long as I dont use it for dynamic web pages like php with mysql databases it works great:D The firewall part of it only needs a 286 powered machine, the sys requirements are mainly for advanced things... the webmail could be quicker.... but no big deal ... Its been running over a year now....I havnt even touched the box,. Quote Link to comment Share on other sites More sharing options...
phunni Posted May 11, 2004 Author Report Share Posted May 11, 2004 (edited) OK - I have installed Arch Linux on my server (this can be moved to other distros if necessary, but it still seems like a basic security thing to me...) and have struggled to get any firewalls to install... I have therefore, followed the instructions in the above iptables tutorial, which has at least got my network back online - and hopefully some security, although I'm quite nervous about this... So, I still need soem help gettign a decent firewall going on my server. All of the above, with the possible exception of shorewall, which I will continue to look at, are not really suitable - being either too hard to use or simply innapropriate for my server. Ideally, something that can be completely configured via a web interface I can run on one of the internal machines would be perfect. The firewall must allow for ip masquerading or whatever thing it is that allows my internal machines to access the internet via the server as a gateway... Edit: I now have the firewall anon recommended up and running - this might be a suitable long term solution, but I want to explore how easy it is to maintain and configure before deciding for certain... Edited May 11, 2004 by phunni Quote Link to comment Share on other sites More sharing options...
phunni Posted May 11, 2004 Author Report Share Posted May 11, 2004 OK - my network is working a little too quickly for me to feel comfortable that I am properly protected... My mail is coming through very quickly - this only happened before when I configured my mail hosts as trusted - I haven't done that here... Also - X-chat logs me in straight away - it always took about 10 seconds or so... Now if this is just an improvement in performance then fantastic, but I am nervous... Quote Link to comment Share on other sites More sharing options...
Gowator Posted May 11, 2004 Report Share Posted May 11, 2004 Just use IP tables and the webmin module .... (Lionux Firewall ..its in the Webmin base RPM's) Quote Link to comment Share on other sites More sharing options...
phunni Posted May 11, 2004 Author Report Share Posted May 11, 2004 I saw the webmin module for iptables before and, I must admit, I didn't find it made things particularly clear... Perhaps I'm just think, but the easier to maintain and configure the better - as far as that is possible while remaining secure... Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.