Re: Perhaps an iptables forum?

[Bob]

Once I finally figured out that Novell was not putting any effort into
making the GUI tool useful, I just did it the old fashion way; wrote a
script with arptables and iptables. Took me about a week of studying,
but once I got the hang of it, it turned out to be pretty easy.

Still, I think a forum dedicated to the art and science of firewalling
and routing would be most useful.

Bob

Dave Howe wrote:
> On 04/06/2010 23:30, Bob wrote:
>> Ok, BM as a firewall tool is going away. SLES's firewall GUI tool is
>> apparently bad enough that people use iptables in scripts to construct
>> their router/firewalls.
>
> SLES's tool is just a gui onto iptables. if you don't like it (and I
> agree it sucks) there are plenty more :)
>
> nice review here:
>
> http://www.enterprisenetworkingplanet.com/netos/article.php/3585056/Master-iptables-with-GUI-Firewall-Builders.htm
>
>
> Although personally I use shorewall or just raw iptables/ebtables commands.

[Dave Howe]

[Dave Howe]

On 14/07/2010 05:33, Bob wrote:
> Once I finally figured out that Novell was not putting any effort into
> making the GUI tool useful, I just did it the old fashion way; wrote a
> script with arptables and iptables. Took me about a week of studying,
> but once I got the hang of it, it turned out to be pretty easy.

Yeah. I was a bit spoilt in the past - having the examples of
checkpoint's FW/1 and the Tiny/Kerio 2.x firewalls to live up to - but
its hard to come even close to the flexibility and power of a rules
based firewall you can build at the command line. Probably why I have no
idea what the ASA gui looks like, and have configured dozens :)