You are not logged in.
Pages: 1
Hi All
Now i'm happy with Archlinux ( it rocks ) i'm thinking i should sort out a firewall ... What would people suggest is the way to go ?
Many Thanks
Last edited by whitetimer (2010-10-27 18:49:43)
Offline
https://wiki.archlinux.org/index.php/Firewall
depends on what you want to do and how much you really want to get involved with it. if you want something quick and easy to set up, try something like gufw. If you want to get more involved from scratch and set up your own in iptables, look at something like this:
https://wiki.archlinux.org/index.php/Si … wall_HOWTO
From a more practical standpoint, for average joe enduser who just wants to add on a firewall for some extra protection, i don't think there's much need to get into setting up your own stuff from scratch when there are programs (frontends to iptables) that are easier to use and set up a decent firewall.
Nai haryuvalyë melwa rë
Offline
I'm happy with Firestarter, it gives me a complete stealth (all green) at
www.grc.com (ShieldsUp).
Offline
Many thanks for the advice, will take a look at both Gufw & Firestarter
Cheers
Offline
I'm happy with Firestarter, it gives me a complete stealth (all green) at
www.grc.com (ShieldsUp).
That reminds me... whatever you choose, make sure that the default incoming policy defaults to drop rather than to reject - that is what gives you stealth. It should be easy to set if not already done by default.
Don't know how much you know about firewalls, but basically, when a packet comes in or out of your computer, the firewall decided if it wants to Accept it, Reject it, or Drop it. Normally, it Accepts everything leaving your computer (ie. communication with the net initiated by you) and also Accepts communication that has already been established (ie. if your web browser asks to see a website, the data coming from that website back to the browser is accepted); and it either Drops or Rejects things that start by trying to come in to your computer (ie. Alan trying to bust in and break your machine). When you Reject, it is like when someone knocks on your door and you say "nobody is home"... obviously someone is there, just not letting the outside come in. When you Drop, it is like not saying anything when you get a knock on the door... the outside doesn't know if anyone is there or not... this is what the Stealth is.
Whatever you choose, GRC is a good way to check the end result.
Nai haryuvalyë melwa rë
Offline
@Bregol
I am going with firestarter install from source, but i have this error when i run ./configure ?
checking for XML::Parser... configure: error: XML::Parser perl module is required for intltool
What else do i need to install ?
Many thanks
Offline
I would install it from AUR if I was you. Sounds like you are missing the perlxml package. But installing from AUR is just like manually doing it from source, except that it will take care of dependencies like this for you; and works with the whole package management system rather than being a stray program.
Nai haryuvalyë melwa rë
Offline
Now this is a new thing AUR .. will have to go and see what this is now ... )
Offline
check the wiki for AUR. I recommend using something like clyde or yaourt... it makes AUR integrate nicely with the repos and everything. i gotta go for now, but do some reading on AUR and AUR helpers (such as clyde) ... the wiki is your friend.
Nai haryuvalyë melwa rë
Offline
Thanks ... I have yaourt installed on my system, but i'm stuck or confused now as to how to install firestarter ?
Any help please ....
Many thanks
Offline
whitetimer, please read the wiki article on installing from AUR https://wiki.archlinux.org/index.php/AUR
Also, please do not just post that you "are stuck or confused" - that is a form of help vampirism. Tell us what you tried to do and where it went wrong/what errors you encountered.
Offline
What do you need a firewall for? Are you behind a router?
Not trying to troll here, but I'd like to figure out what purpose a desktop firewall like firestarter serves for the usual desktop.
Offline
@ Jasonwryan
Sorry for the post ... will take more care in future
@ Awebb
Yes i am behind a router, just thought a firewall would be handy ... If its not an essential thing to have, then i may not bother ...
Offline
Pages: 1