Reply With QuoteI've used gShield and gshieldconfig, but that was with ipchains. The gShield config file changed for iptables, and it is better documented/commented, and makes sense to me, so I didn't bother with the new config tool.
I saw it listed when i did a apt-cache search and I was just curious about it.
I've used gShield and gshieldconfig, but that was with ipchains. The gShield config file changed for iptables, and it is better documented/commented, and makes sense to me, so I didn't bother with the new config tool.
GUI tools are yucky! iptables is very easy to configure from the commandline, and very much worth learning
Iptables is best done by writing your own script by hand. It can be as simple or complex as you want. Also there are a lot of great options (such a state tracking) and ways you can optimize your ruleset for the best performance by using user defined chains, multiport, putting your chains in the right order, and so on, that I just wouldn't trust any config tool. Plus, why not do it by hand. Aren't GUI tool for the Winders world? When you use them you never really learn how things work under the hood and how good they can be done if you do them yourself.
A friend of mine used fwbuilder to make his iptables firewall.... Said good stuff about it - go compile !
I already know how to use iptables, I personally like gui tools if I already know how to do it from the command line. Gui tools usually work faster and I am all about doing things faster and easier (as long as it doesnt handicap me).
Posting Permissions
Bookmarks