From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1I4xHR-0000t7-9i for garchives@archives.gentoo.org; Sun, 01 Jul 2007 11:07:49 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l61B6Xel003712; Sun, 1 Jul 2007 11:06:33 GMT Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.169]) by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l61B2Otf031500 for ; Sun, 1 Jul 2007 11:02:24 GMT Received: by ug-out-1314.google.com with SMTP id a2so668145ugf for ; Sun, 01 Jul 2007 04:02:23 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:from:reply-to:to:subject:date:user-agent:references:in-reply-to:mime-version:content-type:content-transfer-encoding:message-id; b=K+DNMhzBd+3FCKL2yR0rB7+eMmDjjctsiA8fpGMRjMdjL2pG2WLnfk7rNIcchB5aGVpaZPKWjVDzl1k/iVjQJY8C9kve9J7Qd12Yse5RueaaNoF+I+pAVFIiTgVR9r1BfZn6xY/MhoYmSQTnMGQ4J9lNfUHfKWSqY3cfjk12PhM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:from:reply-to:to:subject:date:user-agent:references:in-reply-to:mime-version:content-type:content-transfer-encoding:message-id; b=JGN4NUTN1hmz04P3fbHyOAFMOTyOqwldK64M4+D0bO5hp8P65dJB9LiWU/RzfsRiI5A997Jlapg7TGde6NWa1bFYPedyngqvXwDt4jFwOs4RI+kB3gm/iJhVQi0VwS/5ogoHj7CIjjTL+3MofFFh8liYfqA4qSS34/WMpgDOZ1M= Received: by 10.82.134.12 with SMTP id h12mr10478273bud.1183287743684; Sun, 01 Jul 2007 04:02:23 -0700 (PDT) Received: from lappy.study ( [213.162.120.196]) by mx.google.com with ESMTP id 1sm10093714nfv.2007.07.01.04.02.22 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 01 Jul 2007 04:02:22 -0700 (PDT) From: Mick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] GUI tools for iptables? Date: Sun, 1 Jul 2007 12:01:46 +0100 User-Agent: KMail/1.9.5 References: <7593aeb0707010305v2db2b257wd6f0e59709581ab3@mail.gmail.com> <20070701104232.GC26735@telos.xk7.net> In-Reply-To: <20070701104232.GC26735@telos.xk7.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1582908.rt4yRgmx6o"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200707011201.56021.michaelkintzios@gmail.com> X-Archives-Salt: 8e75e9e4-f8bb-4350-8cb5-caca5b8d7ec2 X-Archives-Hash: 7ecddf80412877c5559e7c28cb1845ae --nextPart1582908.rt4yRgmx6o Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Sunday 01 July 2007 11:42, Paul Waring wrote: > On Sun, Jul 01, 2007 at 06:05:14PM +0800, sain yan wrote: > > It`s dificulte to me for setup iptables!!! > > > > > > > > Are there any GUI tools in profiles??? > > There are plenty of GUIs out there - just google for 'iptables GUI' and > you'll find dozens of tools to help you. However, using iptables at the > command line isn't too difficult if you're only doing simple things like > closing/opening ports on your machine. It is probably simpler than what you think to understand iptables and setup= a=20 simple rule set. Have a *slow* look at: http://www.gentoo.org/doc/en/articles/linux-24-stateful-fw-design.xml=20 which is an excellent tutorial to take you through the steps of designing a= nd=20 setting up your own firewall. There's also man iptables to compliment the= =20 tutorial and explain the many options that exist within iptables. If you are going to manage a production server or a machine with service po= rts=20 open to the wide web, which is expected to come under considerable attack,= =20 you may also want to read this: http://www.gentoo.org/doc/en/articles/dynamic-iptables-firewalls.xml Alternatively, you can use one of the many automatic script generators and = GUI=20 rule managers. If you are used to managing GUI firewalls like you find in = MS=20 Windows, then Firewall Builder may suit your needs: http://www.fwbuilder.org/archives/cat_about.html However, the time you will spend to set up a gui and read its manual and th= en=20 configured it, would probably exceed what it takes to read the iptables=20 articles and set a manual firewall ruleset. HTH. =2D-=20 Regards, Mick --nextPart1582908.rt4yRgmx6o Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQBGh4mb5Fp0QerLYPcRAmsiAKC1CP06ngOopYPGLMElBx9WjrwzKwCfWEFj pH05S7kSYVG4Gs0VKOcbD7c= =hrXF -----END PGP SIGNATURE----- --nextPart1582908.rt4yRgmx6o-- -- gentoo-user@gentoo.org mailing list