public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user]  [ot] An iptables like setup on windowsxp
@ 2005-08-03 13:20 Harry Putnam
  2005-08-03 22:34 ` A. Khattri
                   ` (2 more replies)
  0 siblings, 3 replies; 6+ messages in thread
From: Harry Putnam @ 2005-08-03 13:20 UTC (permalink / raw
  To: gentoo-user

Maybe this isn't really the place but its more likely to get informed
answers here than on an ms group where most will not know what iptables
is.

I'm in a position where I need to use MSwindowsxp OS on 2 machines
that are dedicated video and image editing machines, because of the
software available for that platform.

These machines will also be internet connected and there for will need
some onboard protection beyond my gateway/firewall.

I want to find a packet filter like iptables for use on windows.  That
is, a text based/editable driven packet filter with most or all the
capabilities of iptables.

If it is possible to run iptable from cygwin then I'd prefer that
approach. Anyone have pointers/urls?

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user]  [ot] An iptables like setup on windowsxp
  2005-08-03 13:20 [gentoo-user] [ot] An iptables like setup on windowsxp Harry Putnam
@ 2005-08-03 22:34 ` A. Khattri
  2005-08-04  0:32 ` James Hiscock
  2005-08-05  3:51 ` Walter Dnes
  2 siblings, 0 replies; 6+ messages in thread
From: A. Khattri @ 2005-08-03 22:34 UTC (permalink / raw
  To: gentoo-user

On Wed, 3 Aug 2005, Harry Putnam wrote:

> Maybe this isn't really the place but its more likely to get informed
> answers here than on an ms group where most will not know what iptables
> is.
>
> I'm in a position where I need to use MSwindowsxp OS on 2 machines
> that are dedicated video and image editing machines, because of the
> software available for that platform.
>
> These machines will also be internet connected and there for will need
> some onboard protection beyond my gateway/firewall.
>
> I want to find a packet filter like iptables for use on windows.  That
> is, a text based/editable driven packet filter with most or all the
> capabilities of iptables.
>
> If it is possible to run iptable from cygwin then I'd prefer that
> approach. Anyone have pointers/urls?

Ive never seen a text-based Windoze firewall.

I did a search at cygwin.com/packages and didn't find an iptables package.

You might be better off with the free basic ZoneAlarm...


-- 

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user] [ot] An iptables like setup on windowsxp
  2005-08-03 13:20 [gentoo-user] [ot] An iptables like setup on windowsxp Harry Putnam
  2005-08-03 22:34 ` A. Khattri
@ 2005-08-04  0:32 ` James Hiscock
  2005-08-05  3:51 ` Walter Dnes
  2 siblings, 0 replies; 6+ messages in thread
From: James Hiscock @ 2005-08-04  0:32 UTC (permalink / raw
  To: gentoo-user

> I want to find a packet filter like iptables for use on windows.  That
> is, a text based/editable driven packet filter with most or all the
> capabilities of iptables.

There's something similar in XP to iptables, but it's not really the
same -- take a look at the IPSec Policy (Start -> Control Panel ->
Administrative Tools -> Local Security Policy -> (whatever the bottom
option is... can't remember exactly, but it's something to do with
IPSec)).

It might be close enough to what you're looking for...

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user]  [ot] An iptables like setup on windowsxp
  2005-08-03 13:20 [gentoo-user] [ot] An iptables like setup on windowsxp Harry Putnam
  2005-08-03 22:34 ` A. Khattri
  2005-08-04  0:32 ` James Hiscock
@ 2005-08-05  3:51 ` Walter Dnes
  2005-08-05  7:57   ` Hans-Werner Hilse
  2 siblings, 1 reply; 6+ messages in thread
From: Walter Dnes @ 2005-08-05  3:51 UTC (permalink / raw
  To: gentoo-user

On Wed, Aug 03, 2005 at 08:20:42AM -0500, Harry Putnam wrote

> These machines will also be internet connected and there for will need
> some onboard protection beyond my gateway/firewall.
> 
> I want to find a packet filter like iptables for use on windows.  That
> is, a text based/editable driven packet filter with most or all the
> capabilities of iptables.
> 
> If it is possible to run iptable from cygwin then I'd prefer that
> approach. Anyone have pointers/urls?

  Even if you could do it, running iptables under cygwin is *NOT* what
you want.  Cygwin is a *PROGRAM* running under Windows.  Windows will
get the packets before iptables-under-cygwin-under-Windows does.

  You need to get hardware between the internet and the Windows machines
(i.e. a "hardware firewall").  Try a cheap NATing router.  Many
broadband modems now include a NATing router.  If you want, you can try
setting up a linux machine as a firewall-cum-NATing-router.  That'll be
where iptables shines.

-- 
Walter Dnes <waltdnes@waltdnes.org>
My musings on technology and security at http://tech_sec.blog.ca
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user]  [ot] An iptables like setup on windowsxp
  2005-08-05  3:51 ` Walter Dnes
@ 2005-08-05  7:57   ` Hans-Werner Hilse
  0 siblings, 0 replies; 6+ messages in thread
From: Hans-Werner Hilse @ 2005-08-05  7:57 UTC (permalink / raw
  To: gentoo-user

Hi,

On Thu, 4 Aug 2005 23:51:53 -0400
"Walter Dnes" <waltdnes@waltdnes.org> wrote:

> > If it is possible to run iptable from cygwin then I'd prefer that
> > approach. Anyone have pointers/urls?
> 
>   Even if you could do it, running iptables under cygwin is *NOT* what
> you want.  Cygwin is a *PROGRAM* running under Windows.  Windows will
> get the packets before iptables-under-cygwin-under-Windows does.

Hm, Cygwin isn't a program. It's a compatibility layer that is usually
being used as a set of libraries (DLLs). This allows Unixoid programs
to use POSIX calls and have an abstraction for things Windows doesn't
offer itself.

Well, and *iptables* won't ever compile on Windows just using Cygwin.
Well, iptables doesn't compile on the BSDs either: It depends on a
*kernel* API. Cygwin is all about userland. See it as some kind of
glibc on Windows.

-hwh
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user]  [ot] An iptables like setup on windowsxp
  2005-08-05  7:58 John
@ 2005-08-07  9:51 ` Stoian Ivanov
  0 siblings, 0 replies; 6+ messages in thread
From: Stoian Ivanov @ 2005-08-07  9:51 UTC (permalink / raw
  To: gentoo-user

Once I used  http://sourceforge.net/projects/tdifw/ for trustfull firewall. It was a year ago and Service+textfile config  was good enough for me back then
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2005-08-07  9:57 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-08-03 13:20 [gentoo-user] [ot] An iptables like setup on windowsxp Harry Putnam
2005-08-03 22:34 ` A. Khattri
2005-08-04  0:32 ` James Hiscock
2005-08-05  3:51 ` Walter Dnes
2005-08-05  7:57   ` Hans-Werner Hilse
  -- strict thread matches above, loose matches on Subject: below --
2005-08-05  7:58 John
2005-08-07  9:51 ` Stoian Ivanov

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox