How to detect invasions?
Dave Gavin
dgavin at davegavin.com
Fri Aug 29 21:28:38 EDT 2003
Well, ipcop and smoothwall are Linux-based and both use iptables. They just
have a much nicer web interface that allows you to control thing without
becoming an iptables expert.
Ipcop also comes with snort configured for intrusion detection...
I also used to have a Cisco PIX firewall at work - the box now runs Linux and
has been renamed "Pancho".
Dave
On Fri, 29 Aug 2003 21:13:11 -0400
ron.peterson at yellowbank.com wrote:
> On Fri, Aug 29, 2003 at 08:53:01PM -0400, Dave Gavin wrote:
>
> > If you have a spare system, you might consider setting up a firewall
> > system using ipcop, smoothwall or one of the other open source
> > firewalls out there. A stand-alone dedicated firewall box is a lot
> > easier to maintain than a workstation with some iptables rules added.
>
> Yes and no. It may be easier to start with, but as you find yourself
> wanting to do more sophisticated things, iptables (also check
> ebtables.sourceforge.net) will provide much greater functionality.
>
> Having recently witnessed the shortcomings of Cisco PIX firewall
> equipment, nevermind consumer grade firewall toys, I'd vote for a cheap
> PC w/ Linux any day.
>
> --
> Ron Peterson -o)
> 87 Taylor Street /\\
> Granby, MA 01033 _\_v
> https://www.yellowbank.com/ ----
>
>
--
Being shot out of a cannon will always be better than being squeezed
out of a tube. That is why God made fast motorcycles, Bubba....
"Song of the Sausage Creature" Hunter S. Tompson
More information about the Discuss
mailing list