You are not logged in.
- Topics: Active | Unanswered
#1 2010-08-13 03:30:03
- msx
- Member
- From: solar.system/earth/ar/bue/mdp
- Registered: 2010-08-08
- Posts: 184
- Website
It is really useful to run a host-based firewall?
I connect to the net behind a firewalled router, I don't use OpenSSH or any other similar tools so no ports are open and hearing at boot time and my system is a GNU/Linux distro (Arch of course).
Is it really necessary to run a local firewall? I currently use ufw but I think I can safely shut it down and save some CPU cycles / RAM.
What you experts say?
Enjoying i3wm w/ lifebar + j4-dmenu-desktop + tab_windows / fish shell / Emacs / tmux / Konsole / KDE apps
Arch + Linux-libre kernel: ParabolaGNULinux.org
Offline
#2 2010-08-13 03:38:42
- nixpunk
- Member
- Registered: 2009-11-23
- Posts: 271
Re: It is really useful to run a host-based firewall?
msx, there are already threads here about the subject. The search function is your friend
Here, I even did the work for you:
https://bbs.archlinux.org/viewtopic.php?id=100981
Last edited by nixpunk (2010-08-13 03:42:12)
Offline
#3 2010-08-13 05:06:34
- msx
- Member
- From: solar.system/earth/ar/bue/mdp
- Registered: 2010-08-08
- Posts: 184
- Website
Re: It is really useful to run a host-based firewall?
msx, there are already threads here about the subject. The search function is your friend
Here, I even did the work for you:
Sorry bro, I already looked the wiki but there wasn't any info, thanks for the search.
Last edited by msx (2010-08-13 05:07:11)
Enjoying i3wm w/ lifebar + j4-dmenu-desktop + tab_windows / fish shell / Emacs / tmux / Konsole / KDE apps
Arch + Linux-libre kernel: ParabolaGNULinux.org
Offline
#4 2010-08-13 06:13:29
- sand_man
- Member
- From: Australia
- Registered: 2008-06-10
- Posts: 2,164
Re: It is really useful to run a host-based firewall?
nixpunk wrote:msx, there are already threads here about the subject. The search function is your friend
Here, I even did the work for you:
Sorry bro, I already looked the wiki but there wasn't any info, thanks for the search.
I don't think so. The router itself is a firewall. I know my router runs busybox and uses iptables so I can do anything I want on the router that I could on my clients.
Unless of course there are specific rules you need to apply per client rather than on the router but that would be uncommon I guess.
Offline
#5 2010-08-13 07:31:59
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,224
- Website
Re: It is really useful to run a host-based firewall?
Depends how much you trust the other hosts on the network behind the router with you.
And if you want to get extra paranoid, you might want to run an outbound firewall on your host to restrict what outbound traffic it is allowed to send. Most home/SOHO routers don't offer this.
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline