Does anyone know of a good book that can help me learn more about firewalls, especially the new iptables technology? (Which might not be so new anymore...) Or am I stuck with the man for iptables?

Andy

This is a tough one:
To understand security it's not just a matter of setting up firewalls.

I would first recommend reading this book:

Hacking Linux Exposed
Paperback - 608 pages (April 2001)
Osborne McGraw-Hill; ISBN: 0072127732

Then get this as a reference book:
Internet Core Protocols
O'Reilly
ISBN 1565925726

Basically you'll need to understand how ports and sockets are used and the different protocols used in the OSI model and how they all work to create internet/network connectivity.

Then check out some of the FAQ's for netfilter, it doesn't go through it step by step but it will show you examples to experiment with.
http://www.boingworld.com/workshops/...bles-tutorial/

/Raz

you can check out my script. it could be helpful...

http://rtables.rebby.com

rebby, are your scripts something you can just kinda install and let go? cuz I know if I did it myslef, I'd skrew up, and I need to get a router up quick, so I need a good firewall. I already tried once, got hacked a week in...and almost thrown off my cable provider...help me out

I suggest you read this!

http://www.linuxquestions.org/questi...?threadid=2471

A very *simple* thing most people forget with security.

If you don't understand iptables, at least put
ALL:ALL
in hosts.deny
then you can put
ALL:<ip to allow>
for trusted folks in hosts.allow just don't put
ALL:127.0.0.1
because that is a very easy target for an IP spoof.

This will at a rudimentary level foil the basic system hacker(at least those without IP spoofing capabilities). Then you can at least be on the network with a bit of relative ease.

yes it it... there is a very simple install script that comes with it. you then just have to edit the config file. it gets better every day with new releases every few weeks...

email me or visit http://forum.rebby.com if you have any questions