On Sun, 25 May 2003 08:59:39 -0000
> So, if logging was OK....where were your logs (/var/log/firewall....?)
> and how did you set them?
Yes, /var/log/firewall, and the logging came as a default.
> What do you mean you had no control over the firewall? What was it
> that you couldn't control? Aside from the logging issue, I find the
> SuSEFirewall2 not so bad at all. You get an interface where you can
> configure the "usual" stuff (external / internal interfaces), enable
> disable services, start & stop, and all the "other" stuff...well you
> can do that by hand anyways...right? For example, the DROP parameters
> I had to set manually, but that wasn't such a biggie for me....
I think we're talking about two different packages of software here. SuSE
packed my 7.1 with two firewall packages, a SuSEfirewall and a
personal-firewall, which I suppose was a kind of separation between a
general, more or less one-size-fits-all firewalling and a personalised,
user-interferen..., sorry, -interaction, set of rules. It's not that I had
no control of it - there was a useful config file where one could specify
services running on the machine that should be made available to the
outside world, along with stuff like masquerading... It just didn't give
me control I wanted. I used to printout the rules and wonder what the hell
they were all about - they didn't look anything like my understanding of a
clever set of rules (I'm not an expert, though). So I prefered to use my
own simple rules.
There wasn't an interface, by the way. You just had to configure firewall
to run in /etc/rc.config and configure how it should run in a good old
config file. Which is what I prefer to a fancy interface.
> The reason I'm asking is because I want to be aware if there are
> "real" problems with this firewall and/or if I should consider beefing
> up with another one...
Well, given that we're no security researchers here, you probably won't
get a useful answer to that here. For a normal user, a SuSEfirewall is
usually more than sufficient. SuSE sells a firewall-distro, a bootable
Linux CD with firewall enabled, to corporate customers who want to protect
their networks from intrusions, so I think you can trust them on
A Google search on "susefirewall review" would probably give you more
information of the kind you want.
Registered Linux user #257714
Go get yourself... counted: http://counter.li.org/
- and keep following the GNU.