Incorrect. A firewall is not a hardware device, it is a filter based in software. If it is not enabled, it does not work.RavenLX wrote:I noticed that by default the firewall is turned off (KDE Version). I had enabled it but then found that my All In One Printer (which operates via WiFi) would print but not scan. If I leave it disabled (default) then image scanning works as well.
I have read that there is a built-in firewall that is turned on by default in Linux, and that the GUI is basically just an IP Tables configuration interface, and that it's use isn't necessary for good security. Am I right in assuming this is correct?
A firewall on your computer would be there to protect from someone who managed to 'pwn' your router or from others who manage to hack into your WiFi connection, thus getting on your 'local' network.Also I'm behind a router, with as much security enabled on it as possible.
What would I need this GUI firewall settings for?
RavenLX wrote:I have read that there is a built-in firewall that is turned on by default in Linux, and that the GUI is basically just an IP Tables configuration interface, and that it's use isn't necessary for good security. Am I right in assuming this is correct?
RavenLX wrote:I still would like to learn more about the Gufw/ufw just for the sake of learning it. I vaguely remember setting up IP Tables in Linux a long long time back but forgot a lot of it. It really made me invisible to things like online scans tests from Shields Up by Gibson Research. I just did a scan from there just now of all ports and it's all showing green (stealth) so it looks good from here (which I guess also adds to the security somewhat).
Secondly, NAT very effectively HIDES all of your machines from the prying eyes of the Internet! Anyone scanning across your IP address will ONLY be able to "see" the NAT router! (Which is generally much more secure than the average PC.) So, they won't actually be touching any of your machines located BEHIND the router! Moreover, none of the software running inside your PC can "give out" your network's public IP address because it is completely unknown to your machines! Only the NAT router knows the public IP of your network, your machines only know their private "behind the router" IP's. So Internet client programs, like your web browser which send out the machine's IP address with every request, will be completely fooled and foiled when they're running behind a NAT router.
Users browsing this forum: No registered users and 3 guests