Turn Your Old PC into a Firewall4 min. 26 sec.
A video on how to turn your old computer into a firewall.
Watch the Video
|
Firewall Analysis and Operation Methods
This paper shows how to meet the challenge of low fiscal impact by using open source tools and re-purposing equipment in-hand. The challenge of low service impact was met through three layers of analysis before cutover. The methods used to develop this analysis are structured for re-use in other firewall projects and presented for use by others with similar challenges.
Read the Article
|
Firewall Auditing Checklist
This checklist should be used to audit a firewall. This checklist does not provide vendor specific security considerations but rather attempts to provide a generic listing of security considerations to be used when auditing a firewall. Only technical aspects of security are addressed in this checklist. Manual elements like physical protection for the firewall server is not considered.
Read the Article
|
Egress Filtering FAQ
This FAQ covers the benefits of performing egress filtering on the end points of your perimeter. Egress filtering is not only beneficial to your own network security, but to the rest of the Internet as well. Deployment is usually relatively simple, provided you understand what traffic should be permitted to leave your network.
Read the Article
|
Choosing The Best Firewall
Although I only briefly touched on most of the issues involved in choosing a firewall this should be a good starting point for selecting a firewall. T he best firewall however is not a product although that does influence t he effectiveness of it greatly. It is more a combination of factors. A firewall is only as good as the policy it implements. A firewall should justify its existence in the reduction of impact and/or probability of threats thus reducing risk. A firewall sho uld be active managed and reviewed.
Read the Article
|
How to Bypass Most Firewall Restrictions and Access the Internet Privately
This guide discusses a way an employee or student can securely access the Internet while at work or school, and also get around some common firewall restrictions that prevent you from using most networked programs. My definition of "securely" means that there should be no mean by which your employer can know which websites you have visited or are currently visiting, and can not view or decipher the content of those sites (without actually standing over your shoulder.)
Read the Article
|
How to build an OpenBSD 2.9 based firewall: IDS sensor
This HowTo is based totally on OpenBSD2.9 and IPF. So I am assuming you already know how to install OpenBSD and know that your hardware is totally supported. And that you are familiar a tad bit with Unix file system and VI editor. Next thing is to read this HOWTO completely including the links provided and then begin the fun stuff of installing and building your dream firewall/IDS sensor.
Read the Article
|
Linux Firewalls Using iptables
Network security is a primary consideration in any decision to host a website as the threats are becoming more widespread and persistent every day. One means of providing additional protection is to invest in a firewall. Though prices are always falling, in some cases you may be able to create a comparable unit using the Linux iptables package on an existing server for little or no additional expenditure.
Read the Article
|
IPTables Linux firewall with packet string-matching support
Linux firewalling code has come a long way since the time ipfwadm was introduced in kernel version 1.2.1 in 1995. Ipfwadm enabled standard TCP/IP packet filtering features such as filtering by source/target addresses and port numbers. Then, in early 1999, when the first stable 2.2.0 kernel was released, firewalling code was replaced with new ipchains-controlled code. New features included support for chains of rules, fragmentation handling, better network address translation (NAT) support and several usability improvements. Readers should be reminded that Linux firewalling includes kernel-level code (usually in form of loadable module or kernel source patch) and user-level code (a control utility such as /usr/bin/ipchains, that is used to insert packet rules into kernel-space). Thus whenever new Linux firewalling code was introduced it involved both kernel and userspace code rewrite.
Read the Article
|
Oskar Andreasson IP Tables Tutorial
Oskar Andreasson speaks with LinuxSecurity.com about his comprehensive IP Tables tutorial and how this document can be used to build a robust firewall for your organization.
Read the Article
|
