Firewalls: Re: Which commands Linux Firewall allows ?

Firewalls
(August 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Which commands Linux Firewall allows ?
From:	Rachel Rosencrantz <rachelr @ pobox . com>
Date:	Fri, 29 Aug 1997 13:25:10 -0400
To:	jmarcos @ dc . ufscar . br (Jose Marcos - Estagiario de administracao - Regina), firewalls @ GreatCircle . COM
In-reply-to:	<9708262157 . AA22414 @ leao>

At 06:57 PM 8/26/97 -0300, Jose Marcos - Estagiario de administracao -
Regina wrote:
>Hello
>
>We want to install the option of firewall in our LINUX.
>I looked for in FAQ of Firewall, but I didn't find the answers for this
questionWhich commands Linux Firewall allows for inside machines ?

It really depends on how you configure the firewall and what firewall you
use.  (Some firewalls automatically disable services on install.)

>I know firewall allows all programs as finger, telnet, ftp only if you
logged infirewall machine. Is it right ?. I can't do telnet from inside
machine to other machine outside ? Is it true ? 

This is really dependent on how you set up the firewall.  I assume
when you say "infirewall machine" you are referring to machines on 
the "inside" or more trusted side of the firewall.   

There are many ways you can set up the firewall.  Depending on what
services you allow to go through the firewall you can permit a service
like telnet from the inside to the outside or from the outside to the inside
or both.   You can set up the firewall to deny all services except those
you permit, or you can allow all services except what you deny. 
It depends on the policy you are trying to enforce.  

Usually on the firewall machine itself you will want to disable most
services as people really shouldn't be running things on the firewall, 
except to administer it.  You really should look at some of the books
out there on firewalls and security.  The operating system itself
does not define what the firewall limits.  Even a specific firewall
only limits how you allow/deny access and what control you have
over that access. 

Two good books I can recommend are:
	Firewalls and Internet Security, Repelling the Wily Hacker
	By: William R. Chesswick and Steven M Bellovin
	ISBN: 0-201-63357-4

	Internet Firewalls and Network Security
	By: Karanjit Syan Ph.D. and Chris Hare
	ISBN: 1-56205-437-6

If you can't get them at a bookstore near by you can get
them online from places like Amazon books.  
http://www.amazon.com 

-Rachel

>thanks for all help
>
>Marcos Coelho 
>
>
>

References:

Which commands Linux Firewall allows ?
From: jmarcos @ dc . ufscar . br (Jose Marcos - Estagiario de administracao - Regina)

Indexed By Date	Previous:	VPNs and PPTP From: "Carlos Eduardo Miranda Zottman" <24279 @ hades01 . stj . gov . br>
Indexed By Date	Next:	Re: Be careful about sending firewall log msgs via pagers - esp alpha msgs From: Rachel Rosencrantz <rachelr @ pobox . com>
Indexed By Thread	Previous:	Which commands Linux Firewall allows ? From: jmarcos @ dc . ufscar . br (Jose Marcos - Estagiario de administracao - Regina)
Indexed By Thread	Next:	CheckPoint FT1 3.0 From: Swan Kim <SeogWan . Kim @ mail . disc . co . kr>