firewalling rulesets

[nobody]

I think it would be really nice of you to give out a firewall template for a standard web server.
With protections etc. And a bit of documentation on that.

[hostingguy]

Check out APF - its pretty good

http://www.rfxn.com/projects/advanced-policy-firewall/

I think its also available in atomic
yum install apf

[nobody]

I use iptables in my fw. Apf is just a change in the interface ... Nothing more.
I only suggested that to the guys cause I believe this could come in handy for many people.
Especially some rules for denial of service.

[scott]

Yeah I agree, we did cover some standard rule groups like you're talking about in the book. Its definitely something we'll be working on in future ASL modules.

[nobody]

Yeah I agree, we did cover some standard rule groups like you're talking about in the book. Its definitely something we'll be working on in future ASL modules.

What Book ?
Yeah. I think since ASL deserves it. You have done a very nice job in hardening security and missing something so important is a pity.

[scott]

The book we wrote that is on the front page of the website "Troubleshooting Linux Firewalls" by Addison-Westley-Prentice-Hall

[nobody]

The book we wrote that is on the front page of the website "Troubleshooting Linux Firewalls" by Addison-Westley-Prentice-Hall

May I please have a GPL pdf of it ? hehe Just kidding. I'll check it out

[Kalimari]

"Troubleshooting Linux Firewalls" is great and has really helped me understand the deeper principles of data flow into/out of networks, helping improve office network security as well as on servers in the wild. Insights, tips and guides in this book have convinced (and helped) me to hand-roll firewall/iptables rules as it is by far and away the most flexible approach (for me at least).

[hostingguy]

want to send me a copy or two - every 10 licenses of ASL you get a book :p