[ILUG] [Q] Firewall &tc on (K)ubuntu 7.10 - recommendations/suggestions?

[Brian Foster]

 well, I've got Kubuntu 7.10 installed (more-or-less),
 albeit it's not quite ready to use routinely (e.g.,
 I've yet to configure e-mail), so I'm still using my
 SUSE 9.1 installation.  (the machine now triple-boots,
 SuSE 7.3, SUSE 9.1, and Kubuntu 7.10).  however, one
 thing which is somewhat bothering me is what to use
 as a firewall on Kubuntu, plus any related issues.

 my machine is directly connected to the net via an
 ADSL modem/router (which runs embedded Linux) that
 uses NAT.  there's no dedicated firewall machine,
 DMZ, or so on.  a veerrrry simple setup.

 from the logs on the modem/router I see many attacks
 (an astonishing number!).  so as a second precaution,
 on my SUSE 9.1 system, I'm running SUSE's “personal
 firewall”.  from the logs on SUSE, I can see almost
 nothing penetrates the modem/router.  very possibly
 nothing at all (it's not entirely clear, there's some
 very rare IPv6 stuff the SUSE firewall logs and eats).

 what should I do on the newly-installed Kubuntu?

 I currently don't intend to provide any services (this
 is my home machine, currently strictly a leaf); nor do
 I intend to run anything I'm not using locally; and I
 try to configure my few local services only to accept
 connections from the localhost.  (just like in my SUSE
 configuration.)

 given that the ADSL modem/router seems to be very
 effective, I'm not too worried.  but since the SUSE
 firewall may be helping, is not the cause of any
 known problems, and makes me a bit more comfortable.
 I'd like to do something similar on Kubuntu.  what?

 suggestions, comments, advice, recommendations,
 dis-recommendations, and pints welcome.

cheers!
	-blf-
-- 
“How many surrealists does it take to    |  Brian Foster
 change a lightbulb?  Three.  One calms  |  somewhere in south of France
 the warthog, and two fill the bathtub   |     Stop E$$o (ExxonMobile)!
 with brightly-coloured machine tools.”  |       http://www.stopesso.com