I am new to firewalling with Linux, and so I found this nifty command-line utility called PMFirewall. It ask you a bunch of questions (what is your external interface, etc.) and then generates a script which basically uses a bunch of ipchains rule sets. I told it to free up port 80, so that I can use the web from my clients. However, as a test instead of setting the rule to accept packets on port 80 I told it to DENY, thus expecting my ability to access the web to be interrupted. However, this was not the case. After flushing out and reloading the rule set, I am still able to access the web. I tried manually writing an rc.firewall script and had the same problems...seems like it will accept everything regardless of the rules...What am I doing wrong? Is there any other decent GUI (or non-GUI) firewall utilities out there?
Thanks!
Thanks!