well, I've got Kubuntu 7.10 installed (more-or-less),
albeit it's not quite ready to use routinely (e.g.,
I've yet to configure e-mail), so I'm still using my
SUSE 9.1 installation. (the machine now triple-boots,
SuSE 7.3, SUSE 9.1, and Kubuntu 7.10). however, one
thing which is somewhat bothering me is what to use
as a firewall on Kubuntu, plus any related issues.
my machine is directly connected to the net via an
ADSL modem/router (which runs embedded Linux) that
uses NAT. there's no dedicated firewall machine,
DMZ, or so on. a veerrrry simple setup.
from the logs on the modem/router I see many attacks
(an astonishing number!). so as a second precaution,
on my SUSE 9.1 system, I'm running SUSE's “personal
firewall”. from the logs on SUSE, I can see almost
nothing penetrates the modem/router. very possibly
nothing at all (it's not entirely clear, there's some
very rare IPv6 stuff the SUSE firewall logs and eats).
what should I do on the newly-installed Kubuntu?
I currently don't intend to provide any services (this
is my home machine, currently strictly a leaf); nor do
I intend to run anything I'm not using locally; and I
try to configure my few local services only to accept
connections from the localhost. (just like in my SUSE
given that the ADSL modem/router seems to be very
effective, I'm not too worried. but since the SUSE
firewall may be helping, is not the cause of any
known problems, and makes me a bit more comfortable.
I'd like to do something similar on Kubuntu. what?
suggestions, comments, advice, recommendations,
dis-recommendations, and pints welcome.
“How many surrealists does it take to | Brian Foster
change a lightbulb? Three. One calms | somewhere in south of France
the warthog, and two fill the bathtub | Stop E$$o (ExxonMobile)!
with brightly-coloured machine tools.” | http://www.stopesso.com
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!