Hello i've searching on the net about how firewall works on debian. i get it now that you don't use addationel software. but i don't get it, how to make something that will accept the following ports and the rest must be ignored. i like to that this ports will be accapted and easy to configure(to add ports) tcp 0 0 *:imaps *:* LISTEN tcp 0 0 *op3s *:* LISTEN tcp 0 0 *:mysql *:* LISTEN tcp 0 0 *:vboxd *:* LISTEN(whats this?) tcp 0 0 *op3 *:* LISTEN tcp 0 0 *:imap2 *:* LISTEN tcp 0 0 *:sunrpc *:* LISTEN(whats this?) tcp 0 0 *:www *:* LISTEN tcp 0 0 *:ftp *:* LISTEN tcp 0 0 *:ssh *:* LISTEN tcp 0 0 *:smtp *:* LISTEN and the rest of my progs will accept the connects local isn't there dont have to stand ports open or i'm a wrong. pleaz help because tommorow must be the server away to a company for cohost but they don't use a dmz router. (me windows freak uses allways zone alarm so i don't get the whole firewall thing of debian not) greets kevin
You might want to have a look at Shorewall or Monowall. They can help you configure a firewall. If you have ISPconfig installed, you can use it to configure such a firewall, too. If you don't have ISPConfig installed, you can extract the bastille firewall scripts from the ISPConfig sources.