Very Computer

Hello,

My system is a PPro 200 128 6G drive dual ethernet. It is my firewall
running Redhat 7.2.

I have recently decided to upgrade my iptables to the latest and need
to recompile the kernel.. so I downloaded the kernel source and rpm'd
it and it said it needs gcc so I downloaded the gcc and it has
dependencies.... blah.. blah ...blah.

So my ?, is what is the best setup to run when setting up a box for
iptables/firewall so if I want to keep my iptables up to date, I can?
Again the box was setup with the server option w/ no X, not even
classic X.

Thanks,

JD

I use the kickstart utility and include the following packages. This
allows me to  recompile the kernel and run iptables. I pretty sure
that this will also allow for iptables to be upgraded without a
problem. If you are using linux as a firewall its best if you install
only the packages that you will need and recompile the kernel and only
enable the features and modules that you need for the firewall.
Xwindows is not recomended(to hard to secure for me). You will also
need to run /usr/sbin/ntsysv and remove the asterisk from ipchains and
put an asterisk by iptables. Red Hat automatically enables ipchains
and ipchains and iptables will not run at the same time. Then of
course you will need to input your iptable rules and save them.
Hope this helps.
G.Donovan

%packages
apache
autoconf
autofs
automake
binutils
bind-utils
bash
cpp
expat
freetype
gcc
gcc-c++
gcc-g77
gd
gdb
glibc-devel
glibc-kernheaders
gmp
gnupg
gpm-devel
gzip
iputils
iptables
kernel-source
libjpeg
libpng
libstdc++-devel
libtool
libtool-libs
m4
make
man-pages
mm
ncompress
ncurses
ncurses-devel
openssh
openssh-clients
openssh-server
openssl-devel
perl
rdate
sendmail-cf
stunnel
tcsh
squid
tcsh
tripwire
xinetd
zlib
zlib-devel