Just [invaleed]

Ada dua jenis iptables Generator kesukaan saya…

• Easy Firewall Generator for IPTables 

This program generates an iptables firewall script for use with the 2.4 or later linux kernel. It is intended for use on a single system connected to the Internet or a gateway system for a private, internal network. It provides a range of options, but is not intended to cover every possible situation. Make sure you understand what each option in the generator does and take the time to read the comments in the resulting firewall. This generator will not, for example, generate a firewall suitable for use with a DMZ, but it can provide a starting point. For the most common uses the generator should produce a firewall ready for use.

• Quicktables

quicktables is an iptables firewall and firewall / nat (gateway) script generator. it was created to provide a secure set of iptables rules quickly, while still maintaining few requirements (sh and ifconfig pretty much). quicktables will ask you to answer a small handful of questions, and generates your very own personalized firewall or script.

• current support includes the following
• nat and no nat (firewall only) options
• default policy of DROP on INPUT and FORWARD chains (all packets dropped)
• tcp and udp ACCEPTs on INPUT chain (open ports to the firewall machine)
• tcp and upd port forwarding with nat (forward ports to multiple internal hosts nat only)
• multiple icmp (ping) options
• multiple packet logging level options (syslog – kern.info)
• redhat specific installation and init script supporting both /sbin/service and /sbin/chkconfig commands
• advances port forwarding to multiple internal hosts with multiple external destination addresses
• advanced support for transparent http proxying with squid running either on the firewall itself or running on another host
• xtremely newbie friendly while still secure and very feature rich

Semuanya menjadi lebih mudah

Firestarter is an Open Source visual firewall program. The software aims to combine ease of use with powerful features, therefore serving both Linux desktop users and system administrators.

We strongly believe that your job is to make the high level security policy decisions and ours is to take care of the underlying details. This is a departure from your typical Linux firewall, which has traditionally required arcane implementation specific knowledge.

Why you need a firewall ???

A firewall does not guarantee security but it is in most environments the first line of defense against network based attacks.

You can use Firestarter on your…

… Desktop or laptop. Our philosophy of simplicity has made Firestarter the most widely used Linux desktop firewall software available today.

… Server. Firestarter can be installed onto individual servers and managed graphically over SSH or using the shell.

… Gateway or dedicated firewall. Firestarter will set up Internet connection sharing for you with a minimum of fuss. Want DHCP for the clients? Sure you could configure it yourself, but we know you never get around to doing it, with Firestarter it only takes one click.
Firestarter features

• Open Source software, available free of charge
• User friendly, easy to use, graphical interface
• A wizard walks you through setting up your firewall on your first time
• Suitable for use on desktops, servers and gateways
• Real-time firewall event monitor shows intrusion attempts as they happen
• Enables Internet connection sharing, optionally with DHCP service for the clients
• Allows you to define both inbound and outbound access policy
• Open or stealth ports, shaping your firewalling with just a few mouse clicks
• Enable port forwarding for your local network in just seconds
• Option to whitelist or blacklist traffic
• Real time firewall events view
• View active network connections, including any traffic routed through the firewall
• Advanced Linux kernel tuning features provide protection from flooding, broadcasting and spoofing
• Support for tuning ICMP parameters to stop Denial of Service (DoS) attacks
• Support for tuning ToS parameters to improve services for connected client computers
• Ability to hook up user defined scripts or rulesets before or after firewall activation
• Supports Linux Kernels 2.4 and 2.6
• Translations available for many languages (38 languages as of November 2004)

Selengkapnya : http://www.fs-security.com/

I have noticed that many people try to imitate Mac OSX Tiger’s look with their current operating system. No matter is it Windows or Linux. I’m one of those people and this is my atteption to make Ubuntu Linux look like OSX Tiger. I use Ubuntu simply because it is the best distribution of the best operating system. Ubuntu uses Gnome as it’s desktop environment. For this reason the guide is for only for Gnome users. It you are using some other distribution, this guide is still valid in most cases.

This guide tries to be as spesific as possible, so that even newbies can follow it easily!

Selengkapnya : http://users.utu.fi/ljtaim/ubuntuosx.php

Kmrn lagi browsing nyari gambar TUX, eh malah nemu gambar lucu ini….

Hehehee…. silahkan klo mau dikomentari…

Finally, the final version of Linux kernel 2.6.17 (code name "Crazed Snow-Weasel") is out and available for public

Linux 2 6 17
Released 17 June, 2006

Overview :

• Support for the multicore Niagara series of CPUs from Sun.
• Driver for the Broadcom 43xx based wireless cards by the bcm43xx project, a chip embedded in many laptops
• splice, a new I/O mechanism (see below)
• X86 "SMP alternatives" (optimizes a single kernel image at runtime according with the available platform) (LWN article)
• New scheduler domain which optimizes CPU scheduling decisions for multi-core CPUs
• sync_file_range syscall, (LWN article)
• Block queue IO tracing
• Raid5 reshaping support (LWN article)
• Lightweight robust futexes (LWN article)
• User-space software suspend interface
• Generic RTC subsystem
• iptables support for H.323 protocol, compatibility for 32-bit iptables userspace tools running in a 64-bit kernel
• Add support for Router Preference (RFC4191), Router Reachability Probing (RFC4191) and experimental support for Route Information Option in RA (RFC4191) in IPV6
• CCID2 support for DCCP
• Softmac layer to the wireless stack
• Updates for JFS, ALSA, NFS, V4L/DVB (many new devices added), and many bugfixes and minor updates.

Selengkapnya baca di KernelNewbies