On Sunday 14 December 2003 01:55 pm, Carren Stuart wrote: > Sorry Brian, but I take exception to this statement: > > I definitely would not suggest to someone coming from the Windows > > world whose current idea of a good firewall is Kerio with a system > > tray icon on their primary machine, that they should jump full bore > > into the world of shorewall and iptables while their current > > machine is open to attack from the Internet.
The original point that I was making with this statement was that iptables and shorewall are, in my opinion, more difficult to configure and setup than is something like Kerio. If you run Linux and the only protection that you had previously was something like Kerio, you are unlikely to find an immediate replacement for that. In the meantime, you should not leave your Linux machine subject to intrusion and attack while you "learn" iptables or how to use shorewall. Instead, you would be much better off to purchase a hardware router/firewall, and use that while you learn how to build a better Linux firewall. At least while you are learning, you have some protection. Lyphim, on the other hand, seemed to be suggesting that you obtain a standalone machine and learn enough about iptables and shorewall to configure a standalone firewall, and assuming that your machine is running and you are on the net, hope that you learn enough, quickly enough, for that to protect your primary machine. I happen to disagree. Again, if you disagree with any of the advice that I am giving you, you are welcome to ignore it and go your own way. -- Bryan Phinney Software Test Engineer
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
