10 Amfanin Buɗaɗɗen Tsaro Tsaro Firewalls don Tsarin Linux

Kasancewa Nix admin a kan shekaru 5+, koyaushe ina da alhakin kula da tsaro na sabar Linux. Firewalls suna taka muhimmiyar rawa wajen tabbatar da tsarin Linux/hanyoyin sadarwa. Yana aiki kamar mai gadi tsakanin cibiyar sadarwa ta ciki da waje ta hanyar sarrafawa da sarrafa zirga-zirgar hanyar sadarwa mai shigowa da mai fita bisa tsarin dokoki. Waɗannan saitin ƙa'idodin Tacewar zaɓi suna ba da izinin haɗin kai kawai kuma suna toshe waɗanda ba a ayyana su ba.

Akwai da yawa na buɗaɗɗen aikace-aikacen tacewar zaɓi don saukewa a kasuwa. Anan a cikin wannan labarin, mun fito da manyan mashahuran bangon bangon buɗe ido guda 10 waɗanda za su iya zama da amfani sosai wajen zaɓar ɗaya wanda ya dace da buƙatun ku.

1. Iptables

Iptables/Netfilter shine mafi mashahurin layin umarni na tushen Tacewar zaɓi. Ita ce layin farko na tsaro na tsaro na uwar garken Linux. Yawancin masu gudanar da tsarin suna amfani da shi don daidaita sabar su. Yana tace fakiti a cikin tarin cibiyar sadarwa a cikin kwaya kanta. Kuna iya samun cikakken bayyani na Iptables anan.

1. Ya jera abubuwan da ke cikin ka'idojin tace fakiti.
2. Yana da saurin walƙiya saboda yana duba kan fakitin kawai.
3. Zaku iya ƙara/cire/gyara dokoki bisa ga buƙatunku a cikin ƙa'idodin tace fakiti.
4. Jeri/sifili ga kowace-ka'ida na ka'idojin tace fakiti.
5. Tallafawa Ajiyayyen da maidowa tare da fayiloli.

Shafin Gida na IPtables
Babban Jagora ga Linux IPTables Firewall

2. IPCop Firewall

IPCop shine Buɗewar Tushen Linux Rarraba Tacewar Tacewar zaɓi, ƙungiyar IPCop tana ci gaba da aiki don samar da tsayayye, mafi aminci, abokantaka mai amfani da ingantaccen tsarin sarrafa Firewall ga masu amfani da su. IPCop yana ba da ingantaccen ƙirar gidan yanar gizo don sarrafa Tacewar zaɓi. Yana da matukar amfani kuma yana da kyau ga Kananan kasuwanci da kwamfutocin gida.

Kuna iya saita tsohon PC azaman amintaccen VPN don samar da ingantaccen yanayi akan intanit. Hakanan yana adana wasu bayanai akai-akai don samar da ingantacciyar ƙwarewar binciken yanar gizo ga masu amfani da ita.

1. Tsarin Yanar Gizon Launinsa yana ba ku damar saka idanu akan ginshiƙi don CPU, Ƙwaƙwalwar ajiya da Disk da kuma hanyar sadarwa.
2. Yana duba kuma yana jujjuya rajistan ayyukan ta atomatik.
3. Goyi bayan goyan bayan yare da yawa.
4. Yana ba da ingantaccen kwanciyar hankali da haɓakawa cikin sauƙin aiwatarwa da ƙara akan faci.

IPCop Shafin Gida

3. Shorewall

Shorewall ko Shoreline Firewall wani shahararren buɗaɗɗen Tacewar zaɓi ne na musamman na GNU/Linux. An gina shi akan tsarin Netfilter da aka gina a cikin Linux kernel wanda kuma ke tallafawa IPV6.

1. Yana amfani da wuraren bin diddigin haɗin yanar gizo na Netfilter don ingantaccen fakitin tacewa.
2. Yana goyan bayan aikace-aikacen hanyoyin sadarwa da yawa/firewall/teway.
3. Hukumar Wutar Wuta ta Tsakiya.
4. A GUI interface tare da Gidan sarrafa Yanar Gizo.
5. Taimakon ISP da yawa.
6. Taimakawa Masquerading da tura tashar jiragen ruwa.
7. Taimakawa VPN

Shafin Farko na Shorewall
Shigar da Shorewall

4. UFW - Wutar Wuta mara rikitarwa

UFW shine tsohuwar kayan aikin tacewar wuta don sabobin Ubuntu, an tsara shi da gaske don rage rikitar da tacewar ta iptables kuma ta sa ta zama abokantaka mai amfani. Ƙwararren mai amfani da zane na ufw, GUFW kuma yana samuwa ga masu amfani da Ubuntu da Debian.

1. Taimakawa IPV6
2. Zaɓuɓɓukan shiga da aka fadada tare da wurin kunnawa/kashe
3. Sabbin Hali
4. Tsarin Ƙarfafawa
5. Ana iya Haɗawa da Aikace-aikace
6. Ƙara/Cire/gyara Dokoki bisa ga bukatunku.

UFW Homepage
Shafin Farko na GUFW
Shigarwar UFW

5. Vuurmuur

Vuurmuur wani babban manajan wuta na Linux ne wanda aka gina ko sarrafa ka'idodin iptables don sabar ko hanyar sadarwar ku. A lokaci guda kuma mai sauƙin amfani da shi don gudanarwa, babu wani ilimin aikin iptables da ake buƙata don amfani da Vuurmuur.

1. Tallafawa IPV6
2. Tsarin zirga-zirga
3. Ƙarin fasalulluka na ci gaba na Sa ido
4. Haɗin sa ido na ainihi da amfani da bandwidth
5. Za a iya daidaita shi cikin sauƙi tare da NAT.
6. Ana da fasalolin hana zubewa.

Shafin Farko na Vuurmuur
Vuurmuur Flash Demos

6. pfSense

pfSense wani Buɗaɗɗen Tushen ne kuma ingantaccen bangon wuta don sabar FreeBSD. Ya dogara ne akan manufar tacewa fakiti na Jiha. Yana ba da nau'ikan fasali da yawa waɗanda galibi ana samun su akan bangon bangon kasuwanci masu tsada kawai.

1. Mai iya daidaitawa sosai kuma an haɓaka shi daga tsarin sa na Yanar Gizo.
2. Za a iya tura shi azaman shinge mai kewaye, na'ura mai ba da hanya tsakanin hanyoyin sadarwa, DHCP & uwar garken DNS.
3. An saita azaman wurin shiga mara waya da wurin ƙarshen VPN.
4. Tsarin zirga-zirga da kuma bayanan ainihin lokacin game da sabar.
5. Mai daidaita lodi mai shigowa da waje.

Shafin Farko na pfSense

7. IPFire

IPFire wani buɗaɗɗen tushen tushen wuta ne na Linux don ƙananan ofis, muhallin Ofishin Gida (SOHO). An ƙera shi tare da modularity da sassauci sosai. Al'ummar IPfire kuma sun kula da Tsaro kuma sun haɓaka shi azaman Tacewar Tacewar zaɓi (SPI).

Ana iya tura shi azaman Tacewar zaɓi, uwar garken wakili ko ƙofar VPN.
1. Tace abun ciki
2. Tsarin gano kutse cikin ciki
3. Tallafawa ta hanyar Wiki, dandalin tattaunawa da taɗi
4. Taimakawa masu haɓakawa kamar KVM, VmWare da Xen don yanayin Haɓakawa.

Shafin Gida na IPFire

8. SmoothWall & SmoothWall Express

SmoothWall buɗaɗɗen tushen wutan wuta ne na Linux tare da ingantaccen tsarin Intanet mai daidaitawa. Tushen hanyar yanar gizon sa ana san shi da WAM (mai sarrafa shiga yanar gizo). Sigar SmoothWall da ake rarrabawa da yardar kaina an san shi da SmoothWall Express.

1. Taimakawa LAN, DMZ, da cibiyoyin sadarwa mara waya, da na waje.
2. Tace abun ciki na ainihin lokaci
3. HTTPS tacewa
4. Tallafi proxies
5. Log Viewing and Firewall duban ayyuka
6. Gudanar da kididdigar zirga-zirga akan kowane IP, dubawa da tushen ziyara
7. Ajiyayyen da wurin maidowa kamar.

Shafin Gida na SmoothWall

9. Idon

Tacewar wuta ta Endian wani fakiti ne mai fakitin Inspection na tushen Tacewar zaɓi wanda za'a iya tura shi azaman masu tuƙi, wakili da VPN Gateway tare da OpenVPN. An samo asali ne daga IPCop Firewall wanda kuma cokali mai yatsa ne na Smoothwall.

1. Firewall Bidirectional
2. Tsarin kutsawa cikin kutse
3. Za a iya kiyaye sabar gidan yanar gizo tare da HTTP &FTP proxies, riga-kafi da URL blacklist.
4. Za a iya amintattun sabar saƙon saƙo tare da SMTP da POP3 proxies, Spam Auto-Learning, Greylisting.
5. VPN tare da IPSec
6. Login zirga-zirgar hanyar sadarwa na ainihin lokaci

Shafin Gida na Endian

10. ConfigServer Tsaro Firewall

Ƙarshe, Amma ba tsaro na Configserver na ƙarshe & Tacewar zaɓi ba. Dandali ne na giciye da kuma Wutar Wuta mai iya aiki sosai, kuma ta dogara ne akan manufar duba fakiti na Jiha (SPI) Firewall. Yana goyan bayan kusan duk mahallin Virtualization kamar Virtuozzo, OpenVZ, VMware, XEN, KVM da Virtualbox.

1. Tsarin daemon sa LFD (Login failure daemon) yana bincika gazawar shiga na sabar masu hankali kamar ssh, SMTP, Exim, Imap, Pure & ProFTP, vsftpd, Suhosin da gazawar mod_security.
2. Za a iya saita faɗakarwar imel don sanar da idan wani abu ya saba ko gano kowane irin kutse akan sabar ku.
3. Ana iya haɗawa cikin sauƙin haɗaɗɗen mashahuran rukunonin sarrafa gidajen yanar gizo kamar cPanel, DirectAdmin da Webmin.
4. Yana sanar da mai amfani da albarkatu fiye da kima da kuma aiwatar da shakku ta hanyar faɗakarwar imel.
5. Babban tsarin gano kutse.
6. Na iya kare akwatin Linux ɗinku tare da hare-hare kamar Syn flood da ping of death.
7. Duba don cin nasara
8. mai sauƙin farawa/sake farawa/tsayawa & ƙari mai yawa

Shafin Farko na CSF
Shigarwar CSF

Baya ga waɗannan Firewalls akwai sauran tawul ɗin wuta da yawa kamar Sphirewall, Checkpoint, ClearOS, Monowall da ke cikin gidan yanar gizo don amintar akwatin Linux ɗin ku. Da fatan za a sanar da duniya wanne ne Firewall kuka fi so don akwatin Nix ɗinku kuma ku bar shawarwarinku masu mahimmanci da tambayoyinku a ƙasa a cikin akwatin sharhi. Zan zo da wani labarin mai ban sha'awa nan ba da jimawa ba, har sai kun kasance cikin koshin lafiya kuma ku haɗa da linux-console.net.