[clue] Firewall tool recommendation.
Charles Burton
charles.d.burton at gmail.com
Mon Mar 28 08:45:05 MDT 2016
I agree with Shawn. Generally using PFSense or IPFire on my edge(I switch
between the two depending on how irritated they make me) and for hosts I
use salt to manage the firewalls. It has a nice module built in
https://docs.saltstack.com/en/latest/ref/states/all/salt.states.iptables.html
that makes building and deploying rules a snap. One thing I do like about
firewalld is that the rules are written in xml, makes it pretty easy to
parse and redeploy.
On Mon, Mar 28, 2016 at 2:04 AM, Shawn T Perry <shawn at redmop.com> wrote:
> I use PFSense as/at the router, and fwbuilder to generate scripts for
> local machines. On larger deployments, I use chef/puppet to handle things.
>
> On 3/27/2016 1:02 PM, David L. Anselmi wrote:
> > What do you use to manage your firewalls? (By which I mean any
> networking rules on any of your
> > (Linux) machines.)
> >
> > I've been doing my firewalling in my network devices rather than hosts
> but I guess it's time to join
> > the 21st century where everything has a firewall.
> >
> > So I'm looking for something that makes simple things easy. Making
> complicated things possible would
> > be nice too.
> >
> > On one machine I'm using firewalld because that's what was there. Not
> sure that I like it.
> >
> > So if you have a favorite, what is it?
> >
> > Dave
> > _______________________________________________
> > clue mailing list: clue at cluedenver.org
> > For information, account preferences, or to unsubscribe see:
> > http://cluedenver.org/mailman/listinfo/clue
>
> _______________________________________________
> clue mailing list: clue at cluedenver.org
> For information, account preferences, or to unsubscribe see:
> http://cluedenver.org/mailman/listinfo/clue
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://cluedenver.org/pipermail/clue/attachments/20160328/11cd5ce4/attachment.html
More information about the clue
mailing list