Find the answer to your Linux question:
Results 1 to 8 of 8
My PCLinuxOS gnome requires that I configure the Firewall. My first inclination is to just block everything but I figure that there must be some things on the list that ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Enthusiast cousinlucky's Avatar
    Join Date
    Dec 2005
    Location
    New York City
    Posts
    676

    Firewall Settings! What not to block.


    My PCLinuxOS gnome requires that I configure the Firewall.
    My first inclination is to just block everything but I figure that
    there must be some things on the list that I should not block;
    so I'm asking what those items are, please? Thanks
    PCLinuxOS Gnome and PCLinuxOS Mate
    Linux user # 414321
    You Should Not Give In To Evils, But Proceed Ever More Boldly Against Them!! -from book six of Virgil's Aeneid
    Everything Within The Universe Is Related; We Are All Cousins!!

  2. #2
    Penguin of trust elija's Avatar
    Join Date
    Jul 2004
    Location
    Either at home or at work or down the pub
    Posts
    3,482
    By default you should block all inbound packets. This will not block packets that are in response to, for example, visiting a web page. If you don't access the computer remotely then that should be all you need to do...
    What do we want?
    Time machines!

    When do we want 'em?
    Doesn't really matter does it!?


    Conkybots: Interactive plugins for your Conkys!

  3. #3
    Just Joined!
    Join Date
    Sep 2007
    Location
    Silver Spring, MD
    Posts
    95

    Firewall Question

    What type of firewall rules are you running?

    Are you running iptables, UFW or ipfilter?

    There are a number of different rules we can construct but it depends on what you want the firewall to do and how you want it to perform?

    Please advise.

  4. #4
    Just Joined!
    Join Date
    Jul 2008
    Posts
    54

    Question What do you recommend?

    Quote Originally Posted by tdsan View Post
    What type of firewall rules are you running?

    Are you running iptables, UFW or ipfilter?

    There are a number of different rules we can construct but it depends on what you want the firewall to do and how you want it to perform?

    Please advise.
    I'm sure I can download a firewall from the Ubuntu repositories. What would you recommend? I don't want to spend my life opening and closing ports, but I would like to be safe from hackers.

  5. #5
    Just Joined!
    Join Date
    Sep 2007
    Location
    Silver Spring, MD
    Posts
    95

    Opening and closing ports

    If you are running Ubuntu, there are a number of different applications that you can run from the command line to the gui but it just depends on your level of familiarity with the various tools.

    If you feel you are somewhat advanced, then iptables (CLI)

    If you are a beginner, then ufw (CLI) or firestarter - Firestarter Firewall for your Ubuntu Desktop*|*Ubuntu Geek

    The article points to a number of related firewall applications, just scroll to the bottom to review the lists, this article that may prove to be very helpful.

    Good luck with your search.

    Todd

  6. #6
    Just Joined!
    Join Date
    Jul 2008
    Posts
    54
    I have been doing Unix since 1984 and Linux since 2007, but I've never worried about firewalls because Unix/Linux are not as vulnerable to viruses. But I am getting more requests for advice on firewalls from people I have steered to Linux as a cost-savings measure over Windoze. I have also had a request from a friend with a mixed network, who wants to use a Linux box as a firewall/gateway to protect his network (not a true DMZ, but whatever I can do for him using a single machine.) I'm up on all the networking and NAT that needs to be done, but I don't have any significant experience with firewalls.

    I can tune whatever I set up, but I'd like to not spend the rest of my life tuning firewalls. Could someone make a recommendation for a piece of software and general parameters that would be usable in a setup that won't be monitored daily by a sysadmin? I've read the article above and it is informative, but I'm not sure how what they recommend mirrors expected attack profile on a single non-business computer or small network.

    For example, I understand that blocking inbound traffic is a good thing, because if the user wants to go to a site, the site can answer since the traffic was initiated on an outbound conection. But if a piece of malware does get into the system and wants to phone home, won't it pass an inbound traffic block? So it seems that I should block outbound traffic on certain ports or to certain IP address ranges. But short of setting up my own server and tweaking these values weekly, I don't see how I could avoid having to make weekly service calls to my friends' computers to update the block list.

    I assume I'm overthinking this, so if someone could tell me how to solve this, I'd appreciate it.
    Last edited by Toadbrooks; 11-10-2012 at 05:14 AM. Reason: spelling

  7. #7
    Administrator jayd512's Avatar
    Join Date
    Feb 2008
    Location
    Kentucky
    Posts
    5,023
    Hey there, Lucky!
    Since I know you don't do anything with remote access, go with elija's advice. Block incoming, and you'll be okay.
    Jay

    New users, read this first.
    New Member FAQ
    Registered Linux User #463940
    I do not respond to private messages asking for Linux help. Please keep it on the public boards.

  8. #8
    Linux Enthusiast cousinlucky's Avatar
    Join Date
    Dec 2005
    Location
    New York City
    Posts
    676
    I sure wish thay PCLinuxOS had not discontinued their Gnome distro because I really like it.
    PCLinuxOS Gnome and PCLinuxOS Mate
    Linux user # 414321
    You Should Not Give In To Evils, But Proceed Ever More Boldly Against Them!! -from book six of Virgil's Aeneid
    Everything Within The Universe Is Related; We Are All Cousins!!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •