08-17-2005
PF is the best
Maybe not exactly what you're looking for, but my favorite frontend for iptables is OpenBSD's packet filter (as in, there's an OBSD box in front of all my linux machines
). If you're building a box that's purely going to be a firewall, you seriously might want to look into OpenBSD, as its rules are about 1000 times more readable than iptables. Take a look at the PF user's guide <http://www.openbsd.org/faq/pf/index.html>.
End advocacy
9 More Discussions You Might Find Interesting
1. IP Networking
Hey guys, I have just started using IP tables and was wondering if anyone could direct me to any good online resources as I am totally new to this. Thanks. (1 Reply)
Discussion started by: 182x
1 Replies
2. UNIX for Dummies Questions & Answers
Hello All,
i wonder if it make sense to attemp to use GTK to create a GUI as frontend handling data input and result display, and to use MPI to implement data process in the backend.
I would be very grateful if you can provide an example code.
Thanks, (0 Replies)
Discussion started by: cy163
0 Replies
3. Programming
I came across a small script called pyBurn (attached) which is a frontend for cdrecord. But it only burns cd's and doesn't even recognize my dvd-burner. I'm still learning python (very early stages) so I can't do much with it... is it possible to make it burn dvd's too?
(I'm running Ubuntu Gutsy... (0 Replies)
Discussion started by: el mariachi
0 Replies
4. IP Networking
What should be the iptables rule so that only the subnet 64.61.11.224/255.255.255.248 may access the mysql port 3306 (1 Reply)
Discussion started by: proactiveaditya
1 Replies
5. Programming
Hi,
I am doing frontend for gdb.
Got such things in place:
- gdb from mingw package
- windows OS
- sample aplication to be debugged
- my application (frontend)
I can open sample application under gdb and debug it.
What I want is to connect somehow from my application to gdb and debug... (0 Replies)
Discussion started by: Chrisdot
0 Replies
6. UNIX for Dummies Questions & Answers
Hi,
On the IPTABLES, I did iptables --flush. I want to start fresh. Now I only want two things. Allow one ip address to this server. Allow port 443 as incoming from every where. Please advice how to do this.
This is what I did so for.
iptables -I INPUT -i eth0 -s 1.2.3.4 -j ACCEPT... (5 Replies)
Discussion started by: samnyc
5 Replies
7. UNIX for Advanced & Expert Users
Hello,
my question is about proposed implementation of high available and secure FrontEnd to WebApps behind a firewall. The components of the network and their relationships are as follows:
2 WebApps servers behind a firewall (BackEnd), denoted by GUI1 and GUI2, running Web Applications
... (0 Replies)
Discussion started by: MaciejS
0 Replies
8. UNIX for Dummies Questions & Answers
Hi, I just build a Linux server, I said yes to enable the firewall. I only choose SSH conneciton. When I check the iptables. I see all of this (see below). I want to reject every thing only allow SSH from subnet 192.168.1.xx. Can you advise, how to do.
Chain RH-Firewall-1-INPUT (2... (2 Replies)
Discussion started by: samnyc
2 Replies
9. Ubuntu
Hello,
I use pdftk for join pdf and split pages and more option! But this is through terminal! I need the software with frontend and, especially, with option on button right mouse hover icon document whit option "convert direct to pdf".
This software, or frontend exist?
Thanks (0 Replies)
Discussion started by: enodev
0 Replies
LEARN ABOUT DEBIAN
arno-iptables-firewall
ARNO-IPTABLES-FIREWALL(8) ARNO-IPTABLES-FIREWALL(8)
NAME
arno-iptables-firewall - Single- & multi-homed firewall script with DSL/ADSL support.
SYNOPSIS
/etc/init.d/arno-iptables-firewall [start|stop|status|force-reload|restart]
DESCRIPTION
arno-iptables-firewall is an iptables configuration script with support for both IPv4 & IPv6. While it is extremely easy to use one can
nevertheless use it in quite complicated environments.
All available options are explained in the extensively documented configuration file.
The external interface of the system needs to be set up properly in the firewalls configuration file (EXT_IF). The default behavior of the
firewall is to deny all incoming connections.
For additional requirements not covered by the configuration file custom iptables rules can be placed in /etc/arno-iptables-firewall/cus-
tom-rules. This file is automatically parsed by the service script.
See the README file (eg. in /usr/(local/)share/doc/arno-iptables-firewall) for an example how to manage logging of firewall events through
syslogd.
The arno-fwfilter script can be used to make the firewall logs more readable for humans (see manpage).
Several plugins for the firewall script are available online. Plugins can be downloaded from http://rocky.eld.leidenuniv.nl/ Please see the
README file for more information.
FILES
/etc/init.d/arno-iptables-firewall system service script
/etc/arno-iptables-firewall/firewall.conf firewall configuration
/etc/arno-iptables-firewall/conf.d/ firewall configuration directory
/etc/arno-iptables-firewall/custom-rules custom iptables rules
/etc/arno-iptables-firewall/blocked-hosts host blacklist
/etc/arno-iptables-firewall/mac-addresses mac filter list
Please note, that the last two files do exist in the initial configuration and their use is disabled in /etc/arno-iptables-firewall/fire-
wall.conf
SEE ALSO
iptables(8), arno-fwfilter(1), syslog.conf(5)
The http://rocky.eld.leidenuniv.nl/ web site.
AUTHOR
arno-iptables-firewall was written by Arno van Amersfoort <arnova@rocky.eld.leidenuniv.nl>.
This manual page was written by Michael Hanke <michael.hanke@gmail.com>, for the Debian project (but may be used by others).
Michael Hanke March 14, 2012 ARNO-IPTABLES-FIREWALL(8)