Installation guide
88 Chapter 7. Basic Firewall Configuration
7.1. Basic
Figure 7-1. Basic
After starting the program, choose the appropriate security level for your system:
• High Security — This option disables almost all network connects except DNS replies and
DHCP so that network interfaces can be activated. IRC, ICQ, and other instant messaging
services as well as RealAudio™ will not work without a proxy.
• Low Security — This option will not allow remote connections to the system, including
NFS connections and remote X Window System sessions. Services that run below port
1023 will not accept connections, including FTP, SSH, Telnet, and HTTP.
• Disable Firewall — This option does not create any security rules. It is recommended that
this option only be chosen if the system is on a trusted network (not on the Internet), if the
system is behind a larger firewall, or if you write your own custom firewall rules. If you
choose this option and click Next, proceed to Section 7.5. The security of your system will
not be changed.
7.2. Local Hosts
If there are Ethernet devices on the system, the Local Hosts page allows you to configure
whether the firewall rules apply to connection requests sent to each device. If the device
connects the system to a local area network behind a firewall and does not connect directly
to the Internet, select Yes. If the Ethernet card connects the system to a cable or DSL modem,
it is recommended that you select No.