For writing IP Chains scripts I always have used http://www.packetfilter.amotken.com/doit/ This builds your IPChains firewall script for you. It's slick and simple. At 06:24 PM 2/7/01 -0700, foodog@pop.phnx.uswest.net wrote: > I've used Mason on 2 boxes and it seemed to lock things >down pretty well. My main gripe is that I ended up with >huge unwieldy scripts after letting it do it's learning. I >still "haven't found the time" to learn IPchains syntax >(yes, I know that's lame). > > I've downloaded but haven't fscked with a GUI (web?) based >tool called Firestarter, you might check on that. I also >saw (yesterday?) that there's a beta of a GUI firewall tool >from Mandrake, which I think is the paying home of Jay >Beale, Bastille guy. I expect that's worth looking into. > > I'd search on linuxtoday.com for more candidates. > >BTW, if you're using portsentry you owe it to yourself to >try out logcheck. > >Steve >Donald Martinez wrote: > > > > Does anybody have any experience using mason when setting up a firewall? > > I was wondering if anyone had any experience using it or had some > > recommendations on some good utilities on setting up a good firewall. I > > have snort, and portsentry and am looking for any other utilities that > > would be good for protecting against my webserver. > > > > I understand that a poorly setup firewall is worse than not having one > > at all and with that being said any input would be greatly appreciated > > :) > > > > ________________________________________________ > > See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't > post to the list quickly and you use Netscape to write mail. > > > > Plug-discuss mailing list - Plug-discuss@lists.PLUG.phoenix.az.us > > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > >________________________________________________ >See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't >post to the list quickly and you use Netscape to write mail. > >Plug-discuss mailing list - Plug-discuss@lists.PLUG.phoenix.az.us >http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss