<div>On 31/03/2008, Steve Flynn <<a href="mailto:anothermindbomb@gmail.com">anothermindbomb@gmail.com</a>> wrote:<blockquote class="gmail_quote" style="margin-top: 0; margin-right: 0; margin-bottom: 0; margin-left: 0; margin-left: 0.80ex; border-left-color: #cccccc; border-left-width: 1px; border-left-style: solid; padding-left: 1ex"> On Sun, Mar 30, 2008 at 2:34 PM, Joseph <<a href="mailto:ubuntu@e-pops.org">ubuntu@e-pops.org</a>> wrote: > If I may ask.... which firewall do any of you feel is the best for use > with Ubuntu? And why do you feel it's better? IPTables is a bit of a de-facto standard. -- Steve When one person suffers from a delusion it is insanity. When many people suffer from a delusion it is called Religion. 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 -- ubuntu-users mailing list <a href="mailto:ubuntu-users@lists.ubuntu.com">ubuntu-users@lists.ubuntu.com</a> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a> </blockquote></div> Hey, iptables is good and all, but if you're using Ubuntu, chances are you're going to want a GUI front end for it. Try 'firestarter'. If you're comfortable with commandline but don't want to script iptables rules directly, try 'ferm'[1]. It's a slightly abstracted script languange/processor for iptables. cheers, Owen. [1] 'FERM: For Easy Rule Making' - <a href="http://ferm.foo-projects.org/">http://ferm.foo-projects.org/</a> or `apt-get install ferm` A simple example from the documentation (<a href="http://ferm.foo-projects.org/download/1.3/ferm.html">http://ferm.foo-projects.org/download/1.3/ferm.html</a> or `man ferm`) chain (INPUT OUTPUT) { proto (udp tcp) ACCEPT; } This will insert 4 rules, namely 2 in chain input, and 2 in chain output, matching and accepting both udp and tcp packets. Normally you would type this: iptables -A INPUT -p tcp -j ACCEPT iptables -A OUTPUT -p tcp -j ACCEPT iptables -A INPUT -p udp -j ACCEPT iptables -A OUTPUT -p udp -j ACCEPT