Markus Falb wrote:
On 16.7.2011 19:03, Ljubomir Ljubojevic wrote:
All firewalls (on Linux at least) are by default closed, and you need knowledge to punch through the wholes for your public services.
This is complete nonsense! You are free to configure a default policy of accept and forbid only selected services.
Please do not pull sentences out of context. Keith wrote:
Which is why one poster mentioned that you need to be familiar with IPtables and Networking before trying to make your machine(s) network(s) secure?
and I replied in the sense that he only needs to turn his firewall ON to be secure. "by default" means exactly that, I was not writing about you being able to change *default* configuration!
If you turn firewall ON (in GUI for example, and especially in RHEL/CentOS ), without any allowed service, your system/network will be protected. If you do allow some services, the rest of the services on your system/network will be protected.
Ljubomir