-
Join the MyBroadband community
South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
-
Question of the Day: What's the most interesting small town you've visited in South Africa?
Debian Buster firewall
- Thread starter kitkat+
- Start date
netstrider
Executive Member
- Joined
- Nov 1, 2006
- Messages
- 5,671
- Reaction score
- 4,764
Subby. Just because... kitty.
r00igev@@r
Honorary Master
- Joined
- Dec 14, 2009
- Messages
- 15,640
- Reaction score
- 14,157
- Location
- Draadloos Bantha poo doo in 4ways
There is no decent UI for any for those buggers. I have to read the manual twice each time.
I read that KDE is along with it's new system monitor (welcome finally to the modern era ffs) is making it's own proper firewall frontend..... hopefully these are the game changers that wakes gnome the fck up.
I have tried the usual firewalls but they are all hopelessly impractical..... even the windows firewall is superior.
I have tried the usual firewalls but they are all hopelessly impractical..... even the windows firewall is superior.
HavocXphere
Honorary Master
Do you guys enable a fw on all your internal Debian installs or in what context is this?
Too uncomplicated, there are no dynamic prompts and it assumes you know beforehand what you want to block or allow...... it just does the absolute minimum and last I checked only allows or blocks by port...... what if you have two programmes that use the same port but only want to block one?
There is also firejail but it can get wonky.
Like I said, even windows firewall is superior nvm something advanced like zonealarm or comodo..... which reflects badly upon linux.
I think people often underestimate GUI design and forget that you need an actual talent for it to do it properly. And it often takes years to refine any initial design.
Rocket-Boy
Honorary Master
I script out my firewall rules in iptables.
Admittedly less of that gets handled on the servers themselves these days and more goes through internal firewalls on the network.
With servers you know the source/destination and ports so no need for dynamic popups etc.
I have been a Linux sysadmin for about 18 years now and while I love the server OS, the desktop ones leave a lot to be desired.
Admittedly less of that gets handled on the servers themselves these days and more goes through internal firewalls on the network.
With servers you know the source/destination and ports so no need for dynamic popups etc.
I have been a Linux sysadmin for about 18 years now and while I love the server OS, the desktop ones leave a lot to be desired.