> I have a question here for those of you who use iptables heavily in a > production environment. Right now I am about to replace a older Mandrake > (release 7.2) with an updated linux firewall however before I go ahead and > do that, I'm interested in knowing what you people consider the most stable > distribution for a linux firewall.
Easy: all of them. > I realize that the underlying OS and iptables software is common across all > distributions however some distributions apply patches which others don't, > and as result might be better suitable as a firewall. No. Some distros package one or the other precanned firewall script. You should be sceptical of all of them, and write your own, in my opinion. I don't know of any distribution that patched iptables itself with stuff not available through CVS/patch-o-matic anyway. If you are interested in security aspects besides the firewalling code, please ask the appropriate fora. best regards Patrick
