Kevin O'Gorman wrote: > That helps some, but in net-firewall I'm finding a lot of unstable > packages, and no really good idea which ones will be the best for a > personal firewall, let alone which ones are best supported upstream so > this doesn't happen to me again. So I'm interested in > recommendations. What did you switch to? >
I just switched to shorewall. I configured it to only allow in SSH, but have one weirdy when I try to test using nmap -v -A -P0 in that sometimes nmap reports only port 22 open and 113 closed as expected, but other times it also reports ports 80, 554, and 1755 open, which has me really confused and concerned. One word of advice on using shorewall, compile the netfilter options in your kernel as modules, not directly linked in... That one lead me on a merry chase until I punted and switched to using modules... HTH, Roy -- [EMAIL PROTECTED] mailing list
