---------- IPTABLES ----------
Im looking to create a new firewall.
I would like to block all incoming connections but still alow, FTP (21), HTTP, to be accessed from the outside world.
My windows box (behind the linux box) needs an internet connection and sofar I have this forwarding script:

echo 1 > /proc/sys/net/ipv4/ip_forward
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --flush --delete-chain
iptables --table nat --append POSTROUTING --out-interface eth1 -j MASQERADE
iptables --append FORWARD --in-interface eth0 -j ACCEPT
My windows box also needs some connections on certian ports forwarded to It e.g. 207011 (random port), and needs to beable to view mail and surf the web.
Also logging would be nice
---------- Administration ----------
I need some sort of SECURE way of remotely administrating my linux box over the network. a Terminal like interface and a Grapical file browser/editor (that looks/feels like gnome or KDE) but preferably not using X11 (unless you can super secure it with the firewall)

Any scraps of help would be greatly appreciated (im such a linux n00b)