Language Selection

English French German Italian Portuguese Spanish

Book Review: Linux Firewalls - Attack Detection and Response with iptables, psad, and fwsnort

Working in a university environment, one gets used to doing more with less. Security, particularly, seems to never get the budget it deserves though it has increased in recent years. For all their limitations, open-source tools are the vital lifeblood that makes IT work, and work securely, in academia.

Using Netfilter (or commonly called iptables) for the firewalls have managed to reduce costs but provide stable and secure service to the users. However, for some time we've been looking to get more out of our firewalls to enhance the security and data reporting from the firewalls. The syslogs are all fine and good, but no one is seriously going to review them without some application doing the heavy lifting of making the data presentable.

Linux Firewalls, in this regard, is a great resource. It provided insight and helpful information into additional tools to get the most out of iptables and to add in additional functionality. The book covers basic iptables fundamentals and then covers the additional applications of psad, fwsnort, fwknop and data visualization of firewall logs.

More Here




More in Tux Machines

Type Title Author Repliessort icon Last Post
Story Diamonds are a girl's best friend srlinuxx 10/04/2005 - 11:45pm
Story AMD not out of the Race yet srlinuxx 10/04/2005 - 11:53pm
Story techiemoe rants: srlinuxx 10/08/2009 - 7:01pm
Story More BS from the Evil One. srlinuxx 10/04/2005 - 11:27pm
Story Doom3 for those with little or no PC! srlinuxx 11/04/2005 - 12:49am
Story Linux leaders at open-source summit srlinuxx 10/04/2005 - 11:35pm
Story This months Cosmo srlinuxx 06/02/2005 - 4:03am
Story Mandrake's Clustering Again srlinuxx 11/04/2005 - 4:58pm
Story No Case - No Problem srlinuxx 11/04/2005 - 5:35am
Story ATI has released 64-Bit drivers srlinuxx 10/04/2005 - 11:38pm