On Sat, 15 Nov 2008 13:59:43 -0500 Tom Allison <[EMAIL PROTECTED]> wrote:
... > I noticed that there are a number of iptable management utilities in the > debian arsenal of cool stuff. > > First - I have no interest in installation of a GUI front end on my > firewall. It's a headless box and I want to be able to maintain it as > such. This removes some of the firewall utilities because they appear > to be GUI tools. > > after this I think I am left with a few options: > > ferm > shorewall > arno-iptables-firewall ... > My needs are relatively simple today with options going forward: > > basic home firewall without a DMZ (this I can do by hand). > But I want options for expanding this into a VPN supported firewall with > a DMZ, LAN, and respective port forwarding. > > Even with all of this, I still consider it relatively simple as all > traffic is going in/out through the same IP/interfaces and I am not, as > yet, using anything like socks authentication. Shorewall. It can do anything, although I only use it for very basic stuff. It is widely used, and it has excellent, comprehensive documentation. I am not an expert, though. Celejar -- mailmin.sourceforge.net - remote access via secure (OpenPGP) email ssuds.sourceforge.net - A Simple Sudoku Solver and Generator -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
