[CLUE-Tech] Calling Grant

[Cyberclops]

I know that the firewall is built into the kernel, but I have also
learned that SuSE has their own way of doing things that is definitely
different than other distributions.  Some of it has to do with their
"YaST" and YaST2" configuration tools and other things they do that seem
to be a modification of the standard way of doing things.  However SuSE
does claim to be in compliance with some agreed upon standard.  In fact
they tout it as a feature of their distribution.  That's why, at least
in the beginning, I want to stick with whatever it is they have done. 
For this reason, I am most appreciative of the links you have posted
because they will undoubtedly help me to understand what it is that they
have done. (Assuming I can understand it at all.)


"Jeffery C. Cann" wrote:

> FYI - All linux kernels (2.0, 2.2 and 2.4) have a 'firewall built in'.  The
> 2.2 firewall is called 'ipchains'.  The 2.4 firewall system is called
> 'netfilter' or 'iptables'.  This is not dependant on a particular
> distribution of Linux, it is a feature of the Linux kernel.  Distributions
> may provide utilities that assist in your configuration of a firewall, but
> that is a different story.
> 
> Yes, since I have a 2.2 kernel and SuSE is running a 2.4 kernel, my ipchains
> script will not work.  However, there are migration scripts to convert the
> 'ipchains' script rules to 'iptables' script rules.
> 
> Here's an introduction to netfilter/iptables:
> http://securityportal.com/cover/coverstory20010122.html
> 
> Here's the 'netfilter' home page:
> http://netfilter.kernelnotes.org/
> 
> Here is a tutorial for building a netfilter firewall.
> http://securityportal.com/articles/netfilter20010219.html
> 
> Enjoy!
> Jeff