Digit Technology Discussion Forum - View Single Post

Yamaraj · 04-11-2006, 04:46 PM

Firestarter is not a firewall itself. It's only an interface and rule builder for the
netfilter/iptables duo. Netfilter is the actual packet filtering technology built
into the Linux kernel, and iptables is a userland command-line interface for
configuring the Linux IPv4 packet filtering ruleset. For IPv6, there is ip6tables
available, which is quivalent to iptables for IPv4.

Shorewall is not very easy to configure and set rules, particularly for beginners.
OTOH, it is perfect for experienced sysadmins and netadmins.

I'll still recommend using Firestarter if the user isn't familiar with the innards of
the packet filtering and rule building techniques.

04-11-2006, 04:46 PM	#12 (permalink)
Yamaraj The Lord of Death Join Date: May 2005 Location: यमलोक Posts: 253	Re: Query: Rootkits on Fedora Firestarter is not a firewall itself. It's only an interface and rule builder for the netfilter/iptables duo. Netfilter is the actual packet filtering technology built into the Linux kernel, and iptables is a userland command-line interface for configuring the Linux IPv4 packet filtering ruleset. For IPv6, there is ip6tables available, which is quivalent to iptables for IPv4. Shorewall is not very easy to configure and set rules, particularly for beginners. OTOH, it is perfect for experienced sysadmins and netadmins. I'll still recommend using Firestarter if the user isn't familiar with the innards of the packet filtering and rule building techniques.