I'm using Shorewall which is really only an interface to iptables. Also add squid as a transparent proxy
look at this link http://vampiroz.org/2005/07/effectively-blocking-msn-and-p2p.html Look at the features you use and need right now and make sure the product does that, then check on things like bandwidth shaping and packet inspection. Logging is also a very important factor if you are really serious in security. Placing something like tripwire on top to check that the files are all correct on the system will give you a level of trust that someone has not hacked the box and changed over some of the important files leaving a new hole in the system. To keep an eye on it all something like a snort box watching the network helps. My rules are Block every thing then allow as required. _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
