Mmm, first time post, anyway, iptables is bad ass, but I suggest also installing grsecurity, it's a kernel patch that provides ACLS for programs that use sockets, locks it down pretty good, also does ttl randomizing and all sorts of other nifty things.
http://www.grsecurity.net/ Cheers. -----Original Message----- From: Richard Jenniss [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 01, 2002 12:38 AM To: CLUG Subject: (clug-talk) Fw: Firewall, and monitoring What do people use for firewalls on Linux. I know of IPTables. Anything else to provide protection up to layer 7 ? Any utilities for active monitoring and logging, for example, port scans? Any way to dynamicly configure iptables in such an event if 6 or so different ports are scanned within a certain time, all ports are shut off to that IP ?
