Matt

Firestarter On Startup

Recommended Posts

Hi shanenin. I've finally given up of Firestarter.

Since Firestarter is just a frontend to iptables, I decided I would setup iptables myself and have that load on bootup. Here's what I did:

iptables -F
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables-save > /etc/iptables.up.rules

Then, I edited /etc/network/interfaces as follows:

auto eth0
iface eth0 inet dhcp
pre-up iptables-restore < /etc/iptables.up.rules

(The last line was added)

At the first couple of tries, my computer passes HackerWatch and Shields Up tests right from bootup; however, I would like to know if you see any issues with my iptables rules. :)

Finally, I want to remove Firestarter and all the stuff we created. What is the best way to go about that?

Share this post


Link to post
Share on other sites

I think that was smart of you to take the time to learn how to use iptables rules. I was never patient enough to learn. I have no advice to give.

As to cleaning up firestarter. First use the following command to remove all the symlinks

sudo update-rc.d -f firestarter remove

now lets remove the script from the directory /etc/init.d

sudo rm /etc/init.d/firestarter

then use apt-get or synaptic to uninstall firestarter

Share this post


Link to post
Share on other sites

Fantastic. :) Looks like I've finally got a good-working firewall. I will post a new thread regarding my iptables setup. Thanks again for all your help shanenin!

Share this post


Link to post
Share on other sites

Hey everyone.

I just wanted to tell that original Firestarter script works very well. You all are expecting it to show in system process list or starting the GUI. Well, it doesn't need to do that to be running. It's enough with configuring IPTables.

Here is what you need to do;

$ sudo cp /etc/firestarter/firestarter.sh /etc/init.d
$ sudo chmod +x /etc/init.d/firestarter.sh
$ sudo update-rc.d firestarter.sh defaults

After rebooting you can do following to test the firewall;

$ sudo /etc/firestarter/firestarter.sh status

Results are following: Firewall is running. Then, if you want to start GUI and see the events or configure traffic policy, it's your own business, you have to start it manually. :)

Edited by RoLex

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...