From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LqFbg-0000hh-SQ for garchives@archives.gentoo.org; Sat, 04 Apr 2009 23:49:02 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D55B2E0402; Sat, 4 Apr 2009 23:48:59 +0000 (UTC) Received: from smtprelay.hostedemail.com (smtprelay0126.hostedemail.com [216.40.44.126]) by pigeon.gentoo.org (Postfix) with ESMTP id C0081E0402 for ; Sat, 4 Apr 2009 23:48:59 +0000 (UTC) Received: from filter.hostedemail.com (ff-bigip1 [10.5.19.254]) by smtprelay01.hostedemail.com (Postfix) with SMTP id 672A5116C2D9 for ; Sat, 4 Apr 2009 23:48:59 +0000 (UTC) X-Spam-Summary: 2,0,0,c4088c7735ad358d,22135b8a83251d04,roy@wright.org,gentoo-user@lists.gentoo.org,RULES_HIT:355:379:599:601:854:946:967:973:988:989:1187:1260:1261:1277:1311:1313:1314:1345:1358:1359:1437:1515:1516:1518:1534:1539:1593:1594:1711:1730:1747:1766:1792:2393:2559:2562:2828:3027:3352:3865:3867:3868:3869:3870:3871:3872:3873:3876:3877:5007:6114:6117:7652:7903:8501,0,RBL:none,CacheIP:none,Bayesian:0.5,0.5,0.5,Netcheck:none,DomainCache:0,MSF:not bulk,SPF:,MSBL:none,DNSBL:none Received: from [192.168.80.20] (Port22.TB3.industryinet.com [66.63.237.22]) (Authenticated sender: roy@wright.org) by omf07.hostedemail.com (Postfix) with ESMTP for ; Sat, 4 Apr 2009 23:48:58 +0000 (UTC) Message-ID: <49D7F1E9.3000302@wright.org> Date: Sat, 04 Apr 2009 18:48:57 -0500 From: Roy Wright User-Agent: Thunderbird 2.0.0.21 (X11/20090321) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] simple firewall References: <49D7DE04.3030506@swipnet.se> In-Reply-To: <49D7DE04.3030506@swipnet.se> X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit X-session-marker: 726F79407772696768742E6F7267 X-Archives-Salt: 7495272b-c6ed-49ce-a020-fb93910cc2fa X-Archives-Hash: 4239b5d53d84be60066103fca3645167 gigli wrote: > I wonder if there is any easy firewall for gentoo. I tried ubuntu for a > while and used their ufw, which was very simple. > > My needs: > > Block incoming traffic except for sshd and https (and sometimes > bittorrent) and allow my lan to connect to my samba share, mythtv and > mysql when i use openvpn or allways, which would be easyist. My box is > usually protected by pfsense. I'll second the request. What I'd really like is one similar to what's on the mac where basically when an app attempts to connect to a port, a popup asks if you want to allow it. In the meantime I've been using shorewall which is way more complicated than I like.