For writing IP Chains scripts I always have used
http://www.packetfilter.amotken.com/doit/ This builds your IPChains
firewall script for you. It's slick and simple.
At 06:24 PM 2/7/01 -0700,
foodog@pop.phnx.uswest.net wrote:
> I've used Mason on 2 boxes and it seemed to lock things
>down pretty well. My main gripe is that I ended up with
>huge unwieldy scripts after letting it do it's learning. I
>still "haven't found the time" to learn IPchains syntax
>(yes, I know that's lame).
>
> I've downloaded but haven't fscked with a GUI (web?) based
>tool called Firestarter, you might check on that. I also
>saw (yesterday?) that there's a beta of a GUI firewall tool
>from Mandrake, which I think is the paying home of Jay
>Beale, Bastille guy. I expect that's worth looking into.
>
> I'd search on linuxtoday.com for more candidates.
>
>BTW, if you're using portsentry you owe it to yourself to
>try out logcheck.
>
>Steve
>Donald Martinez wrote:
> >
> > Does anybody have any experience using mason when setting up a firewall?
> > I was wondering if anyone had any experience using it or had some
> > recommendations on some good utilities on setting up a good firewall. I
> > have snort, and portsentry and am looking for any other utilities that
> > would be good for protecting against my webserver.
> >
> > I understand that a poorly setup firewall is worse than not having one
> > at all and with that being said any input would be greatly appreciated
> > :)
> >
> > ________________________________________________
> > See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't
> post to the list quickly and you use Netscape to write mail.
> >
> > Plug-discuss mailing list - Plug-discuss@lists.PLUG.phoenix.az.us
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
>________________________________________________
>See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't
>post to the list quickly and you use Netscape to write mail.
>
>Plug-discuss mailing list - Plug-discuss@lists.PLUG.phoenix.az.us
>http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss