I use snort on several Clark Connect boxes. It does work very well. To chime in on Firewall Apps, Clark Connect works fine. Another one out there that is quite nice is IPCop.
Recently (beside writing some of my own shell scripts for iptables) I have have been modifying various bits on some of the Clark Connect boxes to suit. It is a shame to dedicate a firewall to only looking for clueless traffic. Dave On Fri, 2008-11-14 at 08:29 -0600, Mark J. Bailey wrote: > hey chris, > > > > have you looked at the snort module? Though I haven't tried this, I > think some pfsense users have had some success using its rules to > provide dynamic blocking. Of course, it does nothing towards virus > and spam scanning as Untangle (at least not that I am aware). > > > > Mark > > > > > > From:[email protected] [mailto:[EMAIL PROTECTED] On > Behalf Of Chris McQuistion > Sent: Friday, November 14, 2008 8:25 AM > To: [email protected] > Subject: [nlug] Re: What's the best drop in Firewall App out there? > > > > > Mark, do you know if pfSense has a module that can do P2P software > detection and blocking (not just shaping)? > > > > > I'm using Untangle right now because it has a good content filter, P2P > blocking, virus scanning, and some other features, but it lacks > captive portal functionality which it looks like pfSense has. > > > > > > Chris > > > > > On Fri, Nov 14, 2008 at 8:19 AM, Mark J. Bailey <[EMAIL PROTECTED]> > wrote: > > > chris > > I have been a die-hard pfsense user/fan for over 2 years now. it is > just > one of those things that just works. not perfect. but VERY reliable. > Its symertic NAT is somewhat less flexible with UDP-based things like > VOIP > (compared to iptables full cone NAT), but I have managed to work > around > it. the next release, 1.3, has some new features that I am looking > forward to but will wait to judge when they arrive (such as traffic > shaping across IPSEC tunnels). I used to use shorewall on linux. it > was > nice too but still nowhere near the user-friendliness of pfsense's > GUI. I > think one thing that may have driven pfsense's GUI early on is its > origin > with m0n0wall (embedded device only) in which the GUI is more or less > the > main (only?) way things are done. > > So, if you do come across others please post them here. > > > -----Original Message----- > From: [email protected] [mailto:[EMAIL PROTECTED] > On > Behalf Of Chris Faulkner > Sent: Friday, November 14, 2008 8:12 AM > To: NLUG > Subject: [nlug] Re: What's the best drop in Firewall App out there? > > > arno iptables is more of a script and while it is drop in, it's not > very "noob" friendly. Don't mean to shoot you down on this one and > while arno is a good firewall solution for a system that's already up > and running, a firewall you could drop in and pretty much walk away > from without have to resort to knowing much linux or even how a > firewall works. Console based firewalls are best IMO, but I have a > few clients that no nothing of Linux but can read a web front end and > I'm just curious if there are any more out there like this. So far > pfSense is the only one I can find out there that is "noob" friendly > and I found it by mistake one day so i'm making sure that there is not > a few more floating around like this. Are there any appliance-like > firewall applications that have a web front end, good reporting and > performance? > > On Nov 11, 6:32 pm, "Greg Donald" <[EMAIL PROTECTED]> wrote: > > On Tue, Nov 11, 2008 at 1:19 PM, Chris Faulkner > <[EMAIL PROTECTED]> > wrote: > > > Also, if > > > there are any other dropin firewall apps that are open source and > don't > > > require a crapton of hardware requirements (a.k.a. Untangle), post > them down > > > i'd like to check them out. > > > > apt-get install arno-iptables-firewall > > > > Provides an easy to customize iptables firewall and NAT. Very > > drop-in, very easy to customize. > > > > -- > > Greg Donaldhttp://destiney.com/ > > > > > > > > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en -~----------~----~----~----~------~----~------~--~---
