Well, it is nice to have a firewall capability on Linux, but the problem is in writing the rules. There are a number of sites out there that explain how to write the rules, but actually doing it is another thing. I've developed a set of rules for my site that you might find useful if you are running a similar setup (single server, internal network, desire moderate security without being excessive, have no hackers on the inside, want minimal connectivity from the outside and reasonable connectivity to the outside).
Assuming that you put the firewall script in your /etc/rc.d directory, it is invoked from /etc/rc.d/rc.local at boot time by adding the following statements:
To use it, you will need to modify the LOCALNET, IFEXTERN, and IFINTERN statements to correspond to your network.echo "Firewall OFF." >/var/log/firewall /etc/rc.d/firewall # turn on firewall
Home: www.sibbald.com
Contact: kern at sibbald dot com
Last Update: