Slashdot: News for Nerds


Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

ask slashdot: tight firewall for brand-new linux user

Anonymous Coward writes | about 4 months ago


An anonymous reader writes "Hi all,

I am a new Linux user. I'm on 2nd day now. Currently I am trying out Ubuntu, but that could change.

I am looking for a USER FRIENDLY firewall that I can setup that lets me do these things:
(requirement1) set up a default deny rule
(requirement2) carve out exceptions for these programs: browser, email client, chat client, yum and/or apt.
(requirement3) carve out exceptions to the exceptions in requirement2. i.e. I want to be able to then block off IPs and IP ranges known to be used by malware, marketers, etc., and all protocols which aren't needed for requirement2.
(requirement4) it needs to have good enough documentation that a beginner like me can figure it out

Previously, I had done all of the above in AVG firewall on windows, and it was very easy to do...

So far I have tried these things:
(try1) IPTABLES — it looked really easy to screw it up and then not notice that its screwed up and/or not be able to fix it even if I did notice, so I tried other things at that point...
(try2) searched the internet and found various free firewalls such as Firestarter, GUFW, etc., which I weren't able to make meet my requirements.

Can someone either point me to a firewall that meets my needs or else give me some hints on how to make firestarter or GUFW do what I need?

Thank You"

cancel ×


Shorewall (1)

Wonko the Sane (25252) | about 4 months ago | (#46669699)

Shorewall meets requirements 1-3 for sure, with 4 being open to interpretatin.

firewall (1)

JohnVanVliet (945577) | about 4 months ago | (#46670211)

As a Linux user for 10+ years .
The Default settings for the firewall in almost any linux OS are good

and set up to be secure
Ubuntu dose NOT use "yum" .That is a Redhat tool
about the only thing the user might need to do is if they are using a P2P program and there isp blocks port 6881
is open ports for it

"set up a default deny rule"
unused ports on linux systems are already BLOCKED in "stealth" mode
as in there will be no "deny" answer going back

Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account