[Setup-tool-hackers] Firewall Option?

From: Burra <burra colorado edu>
To: <setup-tool-hackers helixcode com>
Subject: [Setup-tool-hackers] Firewall Option?
Date: Wed, 15 Aug 2001 11:19:03 -0600 (MDT)


Ok, so I've gotten to a crossroad here with the firewall tool... I can go
either of two ways:

1. Make the setup simple. (the preset hard coded rules way)
  - you have a choice between firewall presets (5 levels in all)
  - in the "more options" area you can: (customize the presets a bit)
      + allow trusted systems (ACL)
      + block evil systems (ACL)
      + allow specific services (ftp, sshd, ntpd, etc)
      + set special netfilter options (syn_flood, etc)
      + set logging prefrences

2. Make the setup have an area where you can enter your own "raw rules".
  - all the above features
  - another dialog to insert your own "home grown" rules.


Now, #2 makes the tool very complicated... much more code invloved. In
addition, if some one knows how to create their own rules, then they must
know how to use the command line tool and I don't want to rewrite the
command line tool in GUI form (I see that as reinventing the wheel).

I see #1 as the best option, much simpler and elegent. More of a tool for
the beginner/moderate firewall user (which I beleve is the target user
base).

What do you guys think? Can you argue one way or the other? I'll take the
way that gets the most positve response.

--------------------[-- burra@colorado.edu --]--------------------------



_______________________________________________
setup-tool-hackers maillist  -  setup-tool-hackers@ximian.com
http://lists.ximian.com/mailman/listinfo/setup-tool-hackers

Follow-Ups:
- Re: [Setup-tool-hackers] Firewall Option?
  - From: Joakim Ziegler

References:
- [Setup-tool-hackers] Report code.
  - From: Arturo Espinosa Aldama

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]