Navigation

Language Selection

Search

Book Review: Linux Firewalls - Attack Detection and Response with iptables, psad, and fwsnort

Submitted by srlinuxx on Wednesday 28th of November 2007 12:28:45 AM

Working in a university environment, one gets used to doing more with less. Security, particularly, seems to never get the budget it deserves though it has increased in recent years. For all their limitations, open-source tools are the vital lifeblood that makes IT work, and work securely, in academia.

Using Netfilter (or commonly called iptables) for the firewalls have managed to reduce costs but provide stable and secure service to the users. However, for some time we've been looking to get more out of our firewalls to enhance the security and data reporting from the firewalls. The syslogs are all fine and good, but no one is seriously going to review them without some application doing the heavy lifting of making the data presentable.

Linux Firewalls, in this regard, is a great resource. It provided insight and helpful information into additional tools to get the most out of iptables and to add in additional functionality. The book covers basic iptables fundamentals and then covers the additional applications of psad, fwsnort, fwknop and data visualization of firewall logs.

More Here

Login or register to post comments
Printer-friendly version
10715 reads
PDF version

Latest News

End-of-life announcement for CoreOS Container Linux

As we've previously announced, Fedora CoreOS is the official successor to CoreOS Container Linux. Fedora CoreOS is a new Fedora Edition built specifically for running containerized workloads securely and at scale. It combines the provisioning tools and automatic update model of Container Linux with the packaging technology, OCI support, and SELinux security of Atomic Host. For more on the Fedora CoreOS philosophy, goals, and design, see the announcement of the preview release and the Fedora CoreOS documentation. We'd love for you to try Fedora CoreOS and get involved! You can report bugs and missing features to the issue tracker and discuss Fedora CoreOS in Fedora Discourse, the development mailing list, in #fedora-coreos on Freenode, or at our weekly IRC meetings. Also: Red Hat’s CoreOS Container Linux Reaches Its End-Of-Life

Android Leftovers

Open Letter to the TrueOS Community: TrueOS Discontinuation

Hey TrueOS Community! I just wanted to take a few minutes to address what some of you may have already guessed. With a heavy heart, the TrueOS Project’s core team has decided to discontinue the development of TrueOS for the foreseeable future. We’ll still be heavily involved in other Open Source projects like FreeNAS & TrueNAS CORE. We’re incredibly proud of the work we put into TrueOS and its predecessor, PC-BSD.

TrueOS source code will remain available on GitHub for others that may want to continue the work that we started so many years ago. I can’t explain just how much we appreciate you all being loyal fans of TrueOS and PC-BSD in the past. We’re confident that even though this is a hard decision, it’s also the correct decision because of the exciting new projects that we’re all becoming more involved in like TrueNAS CORE. If you have any questions don’t hesitate to ask.

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Support Tux Machines

Help Support TM
Wall of Appreciation

Gizmoz

LXer

Linux Today

System 76

LinuxSecurity.com Advisories

Debian

It's FOSS

OMG! Ubuntu!

GamingOnLinux

Slashdot

DW Latest Releases

DistroWatch

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

FSF

Ubuntu Buzz

LinuxLinks

Content available under CC-BY-SA

Navigation

Language Selection

Search

Authors Information

LWN

Active forum topics

Phoronix

OpenSource.com

Insider

Linux.com

Kde Planet

Fedora Magazine