Firewall recommendations - Bastille?

[paul-w]

I'm rather a newbie in terms of DA, so I wonder if someone could tell me:

1. Is there an "official" recommended firewall for use with DA?
2. If no official firewall recommendation, is there a de facto standard for use with DA?
3. My old server used the 42go control panel and that came with Bastille (www.bastille-linux.org) and I'm happy with it. Any reason not to stick with it?

 

[hostpc.com]

Personal choice - APF
Works well, easy to update, works great with BFD kits. Bottom line is, "it just works well".

 

[paul-w]

Personal choice - APF
Works well, easy to update, works great with BFD kits. Bottom line is, "it just works well".

I should have mentioned I'm running CentOS 4.

APF looks fine and the KISS firewall (http://www.geocities.com/steve93138/) looks promising too.

 

[gbjbaanb]

Use APF, its simple to configure (which is a GOOD thing when it comes to firewalls), works and integrates with BFD for blocking login-hack attempts.

The only thing i think APF doesn't handle is multiple network cards - it will only configure one of them.

 

[vandal]

APF + BFD = The best software solution imo.

I get like email notifications about 15-20 times a day about how BFD has blocked a host from trying to brute force sshd/ftpd etc.

 

[gbjbaanb]

I wrote logwatch scripts for BFD so I could see what was banned the next day (like sending an email will make a difference after BFD has blocked the IP), which has cut down the number of emails I get whilst still telling me what its done.

If you like I will post them here (the rfx-networks forums seem to be permanently down)

 

[vandal]

I would make your own HOWTO thread in the howto section, i'm sure many would like it for those very busy servers where attacks are abundant.

 

[nobaloney]

I just wanted to add that anyone using kiss should use the one on these forums; it's already got the ports DA requires added.

Jeff