What Is Fwbuilder?
The fwbuilder tool is a graphical firewall builder that supports iptables, ipfilter, pf, ipfw, Cisco PIX (FWSM, ASA) and Cisco routers extended access lists. Fwbuilder takes an object oriented approach and uses pieces of firewalls as objects put together to form a cohesive whole. Building firewalls with fwbuilder is simple.
Installing And Starting Fwbuilder
Fortunately fwbuilder can be installed through your package management system. Whether you run Fedora, Ubuntu, Mandriva, SuSE, etc you should be able to fire up your Add/Remove Application utility.Then do a search for fwbuilder and install.
Once fwbuilder is installed you should be able to find it in the Administration sub-menu under System (in GNOME). Once you start it up you will be greeted by the fwbuilder main window.
Fwbulder Main Window
Create A New Firewall
The first thing is to go to the "new" menu (next to the User/Standard drop down) and select "New Firewall" from the long list of entries. A new window will appear in which you will have four objects to take care of: Name of firewall, type of firewall, OS the firewall is running on, and if you want to use a pre-configured template of firewall rules. For simplicity’s sake especially if this is your first attempt at building a firewall, go ahead and select the pre-configured template. You can edit the included rules later. I will name my firewall Test, for the purpose of this article. Select iptables as the type, Linux 2.4/2.6 as the operating system and I will select the pre-configured template to use. When you check the box for the pre-configured template, a new section will open up asking for the location of the template file. Stick with the default. Click Next to continue on.
The next window you see will be a multi-paned window. In the left pane you can select the type of firewall you want to build. If you click through the firewalls listed you will see that each one is either a different hardware configuration or for a different service. The first two templates are pretty basic firewalls that will service most single network interface machines.
Choose Your Firewall Type
Once you have selected your firewall click the Finish button. Your firewall will be ready and you can customize it if necessary. After you are happy with your firewall go to the Rules menu and select Compile. After the firewall has compiled, go back to the Rules menu and select Install. When fwbuilder has installed the firewall, your machine will now be protected.
This post is part of the series: Keep your Linux box secure with these tools
- Know your Linux security tools
- Linux Command Line: ssh
- Linux Command Line: gpg
- Let IPtables Help Secure Your Linux Box
- Linux Firewalls Made Easy With Fwbuilder