Request for help: Debian firewall, and maybe some kernel upgradetips

[Brian Kelsay]

The IPCop firewall is fairly easy and meant to be only a firewall, although there are add-ons to make it more and it comes with squid so it can be your proxy.  I think it is much better to have a dedicated device or system for something like a firewall.  Just my opinion.  IPCop does offer security updates which sometimes include the kernel.  they are either at kernel 2.4.27 or 2.4.29 right now.  .29 if you upgraded to ipcop 1.4.5, which I haven't yet.

On Debian, try apt-cache search kernel-package, then after you pick the proper kernel for your system (i386, non-smp), do a 
apt-get install kernel-package.
Watch the screen for some instructions on updating your boot menu or do it how you normally do.

Brian Kelsay

>>> Jared <> 04/13/05 10:39AM >>>
I need some firewall help, for starters.

At present, all I need open is SSH, WWW, and FTP.

I tried this:
http://www.rexx.com/~dkuhlman/iptables_install.html 
but I'm installing on 3.0r1 with 2.2 kernel and
got several error messages regarding incompatible
kernel when I tried to start the firewall.

I'd like to upgrade to a newer kernel, but can't
seem to find any help on how to do this easily using
apt-get. I think if I'm using 2.4 or 2.6 my problem
with the firewall will go away. I do not have physical
access to the box I'm working on, so need to be able
to do all of this without physical intervention, or
even the risk of it. What's the safest way to upgrade
a Debian kernel?

Also. Is there any sort of firewall that is real
easy to configure, something like this:

[SuperEasyFirewall]
Open=22,80,23
Blocked=22.23.34.43:[22,80]
Closed=EverythingElse

I don't understand why a firewall config has to be
four miles long and so dern complicated!

-Jared