![]() ![]() These are the connection attempts that are targeted at ports used by important system services. ![]() Don't be alarmed at everything listed here generally only the entries in red represent a threat as far as the firewall can tell. Useful in the event of a security breach should you need to lock the firewall and disable the network entirely.Ĭhanging state is a simple one-click operation if you use the toggle buttons on the toolbar to Start/Stop and Lock/Unlock. Locked: firewall will disallow all connections in and out.Stopped: firewall is turned off, so all connections are allowed through.Active: firewall is running and applying rules to all connections.Some should be familiar names, like your e-mail, web browser and messaging client. You can click on "Active connections" for a list of all currently connected machines, with the source and destination addresses, the service being used and what application invoked it. Status shows whether your firewall is active, disabled, or locked-down and displays information about your network devices, the traffic that has passed through them (Sent/Received) and current activity. The user interface has a toolbar of big shiny buttons for common tasks and a full menubar for all the operations. Once you've completed the Wizard, Firestarter will launch into the main application window, which consists of three tabs: Status, Events, and Policy. The final step is to check the “start firewall now” box and click on Save. All this kit is 'behind' the firewall and is different from the router or modem used to connect to the Internet which will be 'in front' of the firewall. ![]() If the PC you're configuring is the firewall for your entire network and your other computers connect to the Internet through this one, then you want to enable this and select the network hub or switch that device that connects them. Next, the Firestarter wizard asks if you want to set-up Internet Connection Sharing. Usefully, right-clicking the Network Manager icon in the desktop panel gives you a Connection Information pane identifying your active network device and current IP addresses, but not the address mode for static or DCHP – you need to open Network Manager itself to find this ( System > Administration > Network). The firewall needs to know this in order to set some base rules for internet traffic - otherwise you'll be blocked from everything! If you leave all that to your service provider, they will be assigning DCHP addresses for you. If you connect to the internet through a router, it's most likely assigning your PC's network address dynamically through DCHP, unless you or your Linux buddy explicitly set up static addresses. The Wizard will also want to know if you are using static or dynamic IP addresses (how your PC identifies itself to your network and the internet). Modem users get the option to enable the firewall on dial-out. As Firestarter is a system administration tool, it will ask for the root password on launch.įirst it will detect your network devices you select one for firewall configuration from a drop down menu. Although I still can't tell if the Firestarter mascot is some kind of mutant-penguin or a chicken. Before you say 'wizards are for wimps, Linux doesn't need them,' this one is good. Running System > Administration > Firestarterfor the first time launches the Set-up Wizard. It is only as good as the information you feed it.įirestarter is contained in most repositories so you can install through Synaptic Package Manager, or if you really must, by running: Please remember throughout this, Firestarter is the configuration tool, NOT the firewall itself. There are good ones around - FireHOL, Firestarter, Firewall Builder, KMyFirewall, Guarddog, Shorewall - and much debate as to which is best, but I chose Firestarter. So I looked around for a friendly graphical interface as a front-end to configure the built-in IPtables/IPchains utilities for me. Sadly, its' command-lines are complex and even experienced Linux users can struggle to configure it. One of the great features included in Linux by default is the IPtables software firewall which does a good job of protecting the PC from unwanted intrusions whilst on-line. My reluctance to use a terminal applies especially to my firewall. Original Article: 17/03/08 Call me a heretic, but I happen to believe that if Tux had intended man to type, he wouldn't have given us Gnome and KDE! I don't think that disqualifies me as a hardcore Linux user, I just have better things to do than endlessly type command strings (badly). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |