Gentoo Archives: gentoo-security

From: Meder Bakirov <bakirov@××××××××.kg>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] firewall suggestions?
Date: Wed, 07 Jan 2004 08:08:14
In Reply to: [gentoo-security] firewall suggestions? by Pooh Sun Tzu

Also, you may look at giptables ( - [info from giptables' 
site] a free set of shell scripts that helps you generate iptables rules for 
Linux 2.4.x and newer kernels. It is very easy to configure and at present, 
designed to run on hosts with one or two network cards. It doesn't require 
you to install any additional components to make it work with your GNU/Linux 
system. All you need to set-up a very secure firewall for your GNU/Linux 
machines is iptables and GIPTables Firewall.

Main Features

GIPTables Firewall has many advantage compared to its competitors.

    * It is easy to install and configure.
    * It does not require you to install any additional component to make it 
    * It only needs iptables to run.
    * It is using NAT and masquerading for sharing internet access where you 
don't have enough addresses.
    * It is using the stateful packet filtering (connection tracking) feature 
of iptables.
    * It is automatically doing all kinds of network address translation.
    * It is using rate-limited connection and logging capability.
    * It provides good protection against all kind of TCP SYN-flooding Denial 
of Service attacks.
    * It provides good protections against IP spoofing.
    * It provides TCP packets heath check.
    * It has a flexible and extensible infrastructure.
    * It is easy to adjust and modify for your needs.
    * It is small and does not use a lot of memory.
    * It merges cleanly with all native GNU/Linux programs.
    * It is well written and very powerful.
    * It covers all needs in a highly secure server environment.
    * It is Free Software, open source and easy.
    * It is powered by GNU/Linux.

GIPTables is already in portage (masked)

On Tuesday 06 January 2004 22:27, Pooh Sun Tzu wrote:
> Greetings, > I have been with gentoo for about 3 months now, but only recently > decided I needed a firewall. Don't ask, as I still feel simply not > having ports open is just as good as a firewall that blocks them. > Regardless, I would love your suggestions on firewalls avalaible for > Gentoo. Also, if you could provide a brief explaination instead of just > a name, that would make my day much easier. Thanks! > > regards, > Pooh Sun Tzu > > > -- > gentoo-security@g.o mailing list
-- Rgrds, .coder! My Intellect Is The Power! (c) The Prodigy -- gentoo-security@g.o mailing list