Login or Register to Ask a Question and Join Our Community


Cybersecurity

Question on a security package on linux

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Question on a security package on linux
# 1  
Old 11-27-2010
Question on a security package on linux
Hello everyone ,
I want to implement a new firewall, detection system on my network composed of some 200 computers as follows: The fire wall would be a linux box with router, L7 iptable and also snort as IDPS system. These are my questions:
1. Is there any security consideration regarding putting all of these packages on the same server , that is to say that should I inevitably put IDPS and FW on two different linux boxes or they can all be put together on one linux box.
2. Is there any package that contains L7 iptables with snort or any other equally strong IDPS using GUI environment for manipulation and configurations?
3. Is there any other package at all that might have the same functionality; i.e., L7 filter and an IDPS with graphic user interface?
Also I have a question on snort : Is it possible to have control on the size of uploaded files and not only tcp packets from my internal network to internet by L7 filter or Snort or any other software? If this can be done , then I will be able to prevent leakage of data from my internal network by malwares to malicious servers.
Thanks
Login or Register to Ask a Question

Previous Thread | Next Thread

6 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

How to find dependancies of .dstream package (Solaris) & .rpm package( linux)

Friends, Please let meknow, How we can find the dependancies of .dstream package & .rpm package before installation ? For AIX, We can use the inutoc . command to create the .toc file for the bff package, What about Solaris & Linux ? (0 Replies)
Discussion started by: yb4779
0 Replies

2. Linux

RPM Package question

Hi, I have built one RPM last year. now we have another version of that RPM. in previous release we had few extra files then now. so when user upgrade it those files get deleted by RPM package. We want to retain those files. now for workaround i thought of backing up those file during... (0 Replies)
Discussion started by: ajayyadavmca
0 Replies

3. UNIX for Dummies Questions & Answers

Question on install software package on Linux

Hello ALL, I am not very sure about the following two questions, I have install some packages on my Linux system, though. Q1. Should I log in as root to install a software package on a Linux system? Q2. If I log in as a common user, say 'Mike', and install a software on Mike's home... (1 Reply)
Discussion started by: cy163
1 Replies

4. Solaris

dsteam package question

Hi, What is the different between regular solaris package and dstream package? I am not sure about dsteam package. What is it? thanks in advance (2 Replies)
Discussion started by: mokkan
2 Replies

5. Shell Programming and Scripting

perl package question

can someone tell me how below package command worked? I understand how global1.pl works.. but i don't see how global3.pl is working.. Is package Fred command having first output look into $main:name??? # cat global3.pl #!/usr/bin/perl -w #use strict; $main::name = "Your name Here";... (1 Reply)
Discussion started by: hankooknara
1 Replies

6. Solaris

solaris package question

I'm trying to install GNU C compiler. I have the binary downloaded, and add it using a pkgadd -d command. Is there anything else I need to do? Thanks. (7 Replies)
Discussion started by: ECBROWN
7 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

netstat-nat

netstat-nat(1)						      General Commands Manual						    netstat-nat(1)

NAME

       netstat-nat - Show the natted connections on a linux iptable firewall

SYNOPSIS

       netstat-nat [options]

DESCRIPTION

       netstat-nat Displays NAT connections managed by netfilter/iptables which comes with the > 2.4.x linux kernels.

       The  program  reads  its information from '/proc/net/ip_conntrack' or '/proc/net/nf_conntrack', which is the temporary conntrack-storage of
       netfilter.

OPTIONS

       -h     displays help

       -n     don't resolve IPs/portnumbers to host/portnames

       -p <protocol>
	      display NAT connections with protocol selection (see /etc/protocols)

       -s <source host>
	      display connections by source IP/hostname

       -d <destination host>
	      display connections by destination IP/hostname

       -S     display SNAT connections

       -D     display DNAT connections

       -L     display only connections to NAT box self (doesn't show SNAT & DNAT)

       -R     display only connections routed through the NAT box (doesn't show SNAT & DNAT)

       -x     extended view of hostnames

       -r <src|dst|src-port|dst-port|state>
	      sort connections

       -o     no output header

       -N     display NAT box connection information (only valid with SNAT & DNAT)

       -v     prints version

FILES

       /proc/net/ip_conntrack or /proc/net/nf_conntrack

SEE ALSO

       http://www.tweegy.nl/projects/netstat-nat/
       http://www.netfilter.org/

AUTHOR

       netstat-nat has been written by D.Wijsman danny@tweegy.nl
       The manual page has been written by marceln@xs4all.nl

								     July 2002							    netstat-nat(1)