[ubuntu-za] Firestarter firewall
Morgan Collett
morgan at ubuntu.com
Fri Oct 3 11:56:43 BST 2008
On Fri, Oct 3, 2008 at 12:34, Robert Holm <robhholm at lantic.net> wrote:
> What I tried next was to edit the /etc/firestarter/configuration file by
> changing the name of the external network interface from "eth0" to
> "ppp0", and made the same change to the internal network name.(Have not
> checked to see if this additional change was really necessary, or
> desirable).
>
> Firestarter now starts without a problem. It shows the iBurst wireless
> HTTPS service as a permanent active connection, and it records all the
> blocked events. I don't know enough to know whether this is kosher, but
> it seems to be OK.
In hardy, launching Firestarter from the menu automatically runs it
through gksudo, so it has root.
There is a GUI setting to set the interfaces: Edit > Preferences >
Network Settings. There's also a wizard to configure it on first
usage: Firewall > Run Wizard.
I haven't been running Firestarter lately as I'm behind a device that
does NAT, but I used it successfully when I was on ADSL.
With time I filtered a lot of the event logging out as there were 100s
of port scans and ssh connection attempts daily. You can do that in
Edit > Preferences > Events: do not log events for the following. I
added ports that I didn't have open (like the MS SQL / AD ports) which
I saw repeated connection attempts for. I only allowed ssh in from the
IP of my web host, so I could ssh there from outside and then into my
firewall.
Regards
Morgan
More information about the ubuntu-za
mailing list