Guarddog
From MEPIS Documentation Wiki
Guarddog is the default firewall configuration utility in MEPIS. It provides a GUI for iptables, the firewall that comes with Linux kernel.
As the website states: "Guarddog is aimed at two groups of users. Novice to intermediate users who are not experts in TCP/IP networking and security, and those users who don't want the hastle of dealing with cryptic shell scripts and ipchains/iptables parameters."
Open the application by clicking KMenu --> Internet --> Security --> Guarddog.
Contents |
Zones
Some users are confused by two "Zones" found under the Protocols tab. These "Zones" determine direction, being either client or server. The Internet Zone allows connections to servers and services that are on the Internet/Network. The Local Zone allows connections to servers and services that are on the local machine (for example sshd server allowing remote logins to your local machine).
Setting up a custom zone
If for example you need a "Local Network" zone with different firewall permissions you can do the following:
- click "New Zone" in Zone tab
- edit name as "Local Network" and set up the address or the address range (using a network mask) of the machine(s) that will be part of that zone
- check the "Local" checkbox in "Connection" section
- now you can go to the "Protocol" tab and select the checkboxes in "Local" for protocols that should be accessible from the new zone and in "Local Network" the protocols that should be accessible from your machine.
Protocols
A protocol is a set of rules that enables and controls communication. Default protocols come with Guarddog, but you can also add one of your own.
Adding a new protocol
- Go to "Advanced" tab
- Click "New Protocol" set up a custom name and specify the type: TCP or UDP and enter the port number or range
- Go to "Protocol" tab
- Click the correct "Defined Network Zone", Default choices are Internet or Local.
- In the "User Defined" section click the little arrow to expand the choices
- Find the new protocol and check the box
Saving protocols
On the Advanced tab, you can save or backup your settings using the Import/Export feature. This is handy if you do a reinstall your system and want to restore your firewall settings or if you want to transfer your custom settings to another computer.
Links
- Online manual from the guarddog site.
- Setting up a personal firewall on Debian using Guarddog
See also: Firestarter
Categories: Security | Networking | FAQ
