Stuff Here:

• 2/13/01 NBLUG Firewall talk outline
• a sample firewall template for kernel 2.2.X
• example IP chains rules from kernel 2.2 firewall
• sample firewall for kernel 2.4.X
• another sample firewall for kernel 2.4.X
• Internet Standards:
  • port numbers assignments
  • icmp parameters
  • ipv4 address space
  • multicast addresses
  • reserved tlds
  • country codes
• Some useful rpms and tar files (they work with RedHat/Turbo/Mandrake)
  • logcheck-1.1-5.i386.rpm from TurboServer 4.0
    searches log files for interesting stuff and emails results, run from cron
  • ipmasqadm-0.4.2-24.i386.rpm from TurboServer 4.0
    Used for port forwarding to access machines behind a firewall
  • snplog-0.1.tar.gz includes icmplog, tcplog, & udplog
• Securing Linux, Part 1
• Securing Linux, Part 2
• A list of ports I've been scanned on

Links There:

• Some excellent articles on securing your Linux box:
  • Securing Linux, Part 1
  • They Can't Crack What They Can't Find
  • SYLS101: Securing Your Linux System 101
  • Armoring Linux
• Linux IP Firewall Information the motherload of firewall links
• Firewall Programs:
  • CoyoteLinux
  • Linux Router Project a simple decicated firewall router
  • Freesco
  • PM Firewall
  • Linux Firewall Tools "Firewall Design Tool"
  • gnome lokkit (info)
  • gnome lokkit (rpm)
  • a bunch of firewalls on Freshmeat.net
  • Trinux
• Firewall testing tools (none of these found everything on my machine):
  • nmap port scanning tool
  • nessus a sophisticated scanning tool and nmap frontend - recommended
  • Saint an updated version of Satan
  • Some web based testing places
    • SYGATE including a fast stealth scan
    • Secure Design
    • Hacker Whacker
    • NetworkScan
    • Security Space
    • Secure-me
    • Shields Up windows oriented
• openssh get it, use it instead of telnet and ftp
• ssh1 & ssh2
• ssh security advisory
• HOWTOs & FAQs:
  • Kernel 2.4 Packet Filtering HOWTO
  • Kernel 2.4 NAT HOWTO
  • How to read a "netmask"
  • The World Wide Web Security FAQ
  • IPCHAINS HOWTO
  • Firewall HOWTO
  • Security HOWTO
  • Bridge + Firewall + DSL Mini-HOWTO
  • Internet Firewalls FAQ
• Hardware Firewalls:
  • Linksys hardware firewall & router
  • MaxGate
  • SonicWall
  • D-Link DSL products
  • WatchGaurd
  • WebRamp 700
  • SMC Barricade
  • FirewallGuide.com's hardware firewall page
• Linux Gets Stateful Firewalling (kernel 2.4)
• Using Linux 2.4 Firewalling - Building a Firewall with Netfilter
• CERT/CC Advisories
• CERT/CC Current Activity
• Linux Firewall and Security Site
• Installing a firewall, Part 1
• Linux firewall survey, Part 1: Open source product roundup
• Snort.org, The Lightweight Network Intrusion Detection System
• A comparision of FTP deamons
• mynetwatchman report your firewall scans here
• DRDoS Distributed Reflection Denial of Service

E Frank Ball frankb@sonic.net