ANNOUNCE: LinWiz 1.01 - on-line iptables configurator

ANNOUNCE: LinWiz 1.01 - on-line iptables configurator

Post by Chris Lowt » Wed, 16 Apr 2003 13:05:13



LinWiz Version 1.01 is now available for use. This adds the
LinWiz://PersonalFirewall to the family of LinWiz iptables configuration
wizards.

The home page is at: http://www.lowth.com/LinWiz

LinWiz is a growing set of on-line tools for the automated generation of
linux security configuration files and scripts. The tools aim to avoid the
user's need of any in-depth technical knowledge - and allow novices and
experts to set up firewalls with ease.

First there was : ** LinWiz://SimpleFirewall **

This wizard is suitable for creating a simple "iptables" configuration for a
linux workstation or server with a single network card, not acting as a
router (not forwarding IP traffic).

It allows you to choose which services running on the system to be
configured you wish to allow others to access (it restricts inbound
connections). The rules it creates do not restrict the services on other
systems that your system can call (outbound connections are enabled for all
ports), and neither do they restrict the ability of programs running on
your system to connect to services that also run there ("localhost" access
is enabled for all ports).

Now there is also : ** LinWiz://PersonalFirewall **

This "novice-user" wizard is suitable for creating a very simple "iptables"
configuration for a linux workstation, with a single network card, not
acting as a router (not forwarding IP traffic) and not providing any IP
services to other hosts.

It allows you to block a number of common IP 'exploits' and sets up your
system in a highly 'locked down' manner - exposing no IP services to other
systems, but not restricting the internet or other IP services (such as
Web, Ftp, Mail etc) that you can use. It produces a file that can be read
by the 'iptables-restore' utility (such as is used by recent RedHat,
Mandrake and other linux distributions), or a shell script that can be
deployed as an "rc.firewall" boot-time script.

There's more on the way ...

Chris Lowth

##########################################################################

# PLEASE remember a short description of the software and the LOCATION.  #
# This group is archived at http://stump.algebra.com/~cola/              #
##########################################################################