[Solved][Firewall Ubuntu 7.04 Gnome] Suggestions?

Post by **ayu** » 27 Aug 2007, 15:38

I just wondered if there is anyone who knows of a good firewall for Linux? i am using Ubuntu with Gnome.

I have tested

Guarddog and gnome-lokkit so far. lokkit wouldn't even start and guarddog seems to be for KDE and had i had a lot of problems with it.

Any tips?

PS: when i try lokkit i get

Code: Select all

root@clare:/home/cats# gnome-lokkit

GnomeUI-WARNING **: While connecting to session manager:
Authentication Rejected, reason : None of the authentication protocols specified are supported and host-based authentication failed.
Gdk-ERROR **: BadMatch (invalid parameter attributes)
  serial 3519 error_code 8 request_code 62 minor_code 0
root@clare:/home/cats#

Post by **maboroshi** » 27 Aug 2007, 16:26

IPTABLES seems to be the defacto standard standard for Linux http://www.netfilter.org/

guess a bit different than most windows firewalls

Post by **bad_brain** » 28 Aug 2007, 04:49

yeah, iptables is the standard firewall on most Linux systems, and it is not really hard to learn the syntax...and you will also learn a lot about networking...

it is most likely already installed (never seen a distro without a iptables/netfilter yet), simply enter:

Code: Select all

iptables -L

it should display the 3 default chains INPUT, FORWARD and OUTPUT then.

Post by **ayu** » 28 Aug 2007, 10:25

Thanks for the answers guys =)

Apparently it got a little fucked up when when i played with it before ^^

Code: Select all

root@clare:/# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
RH-Lokkit-0-50-INPUT  0    --  anywhere             anywhere            

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
RH-Lokkit-0-50-INPUT  0    --  anywhere             anywhere            

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain RH-Lokkit-0-50-INPUT (2 references)
target     prot opt source               destination         
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:www flags:FIN,SYN,RST,ACK/SYN 
ACCEPT     0    --  anywhere             anywhere            
ACCEPT     0    --  anywhere             anywhere            
ACCEPT     udp  --  www.routerlogin.com  anywhere            udp spt:domain 
REJECT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN reject-with icmp-port-unreachable 
REJECT     udp  --  anywhere             anywhere            udp reject-with icmp-port-unreachable 
root@clare:/# iptables -X RH-Lokkit-0-50-INPUT
iptables: Too many links
root@clare:/#

So, does anyone know how to remove a chain? =)

i used the delete chain option but it gave me "Too many links" =/

Post by **bad_brain** » 28 Aug 2007, 13:18

hm, first remove that "lokkit" package again (you used apt-get I hope ^^ ), after a reboot either the extra chain should be removed and the default chains are empty or you have to flush the rules by:

Code: Select all

iptables -F

if the lokkit-rulechain is still there you should be able to remove it then by:

Code: Select all

iptables -X RH-Lokkit-0-50-INPUT

the INPUT/OUTPUT/FORWARD chains are built-in default chains and cannot be removed.
when everything is clean you can start with setting up your own rules...

Post by **ayu** » 28 Aug 2007, 13:30

ok thanks! =D

suck-o.com

[Solved][Firewall Ubuntu 7.04 Gnome] Suggestions?

[Solved][Firewall Ubuntu 7.04 Gnome] Suggestions?

I suggest IPTABLES