Announcement

Collapse
No announcement yet.

Guarddog

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    Guarddog

    After installing Kubuntu 11.04, I can't find guarddog.
    I tried
    Code:
    sudo apt-get update
    but it doesn't work and keeps saying that it might be obsolete or not available.

    Do I have to edit the package list? How do I do this?
    Do I have to use another firewall? What firewall should I use (excluding firestarter)?
    Tags: None
    • Top
    • Bottom
    #2
    Re: Guarddog

    It's definitely gone from the repositories:

    greenman@Wolfenstein:~$ whohas -d Ubuntu,Debian guarddog
    Ubuntu guarddog 2.5.0-1ubuntu1 477K universe http://packages.ubuntu.com/dapper/guarddog
    Ubuntu guarddog 2.6.0-1ubuntu1 506K universe http://packages.ubuntu.com/hardy/guarddog
    Ubuntu guarddog 2.6.0-2.1ubuntu3 506K universe http://packages.ubuntu.com/lucid/guarddog
    Ubuntu guarddog 2.6.0-2.1ubuntu3 506K universe http://packages.ubuntu.com/maverick/guarddog
    Debian guarddog 2.6.0-2.1+b1 507K stable http://packages.debian.org/squeeze/guarddog
    Debian guarddog 2.6.0-2.1 [<a href unstable http://packages.debian.org/sid/guarddog
    Will gufw or kmyfirewall give you the same functionality? Firestarter is also available, and should work fine in kde.
    We only have to look at ourselves to see how intelligent life might develop into something we wouldn't want to meet. -- Stephen Hawking
    • Top
    • Bottom

    Comment

      #3
      Re: Guarddog

      AFAIK, Guarddog has not been ported to Qt4/KDE4 (which is probably why it isn't available anymore). Firestarter seems unmaintained, and it's age is starting to show with various issues.

      The "simplest" option would be to use ufw (the default firewall configuration tool for *buntus) for configuring your firewall.

      ufw is a cli tool, but there are graphical front-ends available. There is gufw (gtk) in the repos (already mentioned by doctordruidphd), and a KDE systemsettings module for ufw is available on kde-apps:
      http://kde-apps.org/content/show.php...content=137789
      (unfortunately not in the repos yet, but I'd expect it to be available for oneiric).

      EDIT: Seems kcm-ufw is available for natty in a ppa:
      https://launchpad.net/~blca/+archive/published


      • Top
      • Bottom

      Comment

        #4
        Re: Guarddog

        I've installed gufw but I'm having troubles with the policies.
        With Guarddog I allowed HTTP, HTTPS, NTP (synchronizing the system clock) and DNS.

        In Gufw I set "deny" on both incoming and outgoing traffic.
        How can I figure out the number of the port I used to have open, the kind (UDP, TCP, both) and if I have to allow outgoing/incoming/both?
        • Top
        • Bottom

        Comment

          #5
          Re: Guarddog

          Originally posted by verduz
          I've installed gufw but I'm having troubles with the policies.
          With Guarddog I allowed HTTP, HTTPS, NTP (synchronizing the system clock) and DNS.

          In Gufw I set "deny" on both incoming and outgoing traffic.
          How can I figure out the number of the port I used to have open, the kind (UDP, TCP, both) and if I have to allow outgoing/incoming/both?
          I don't use gufw (I only use the cli-tool and the kcm module), so I don't really know what you can do with gufw, but ufw supports creating simple rules with the service names so you don't need to worry about portnumbers/protocols (unless you want to).

          For example, to allow outgoing connections (which is likely the only direction you need to allow unless you have servers running) with http, https, ntp and dns, you can create rules:
          Code:
          sudo ufw allow out http
          Code:
          sudo ufw allow out https
          Code:
          sudo ufw allow out ntp
          Code:
          sudo ufw allow out dns
          You can review your rules and firewall status with
          Code:
          sudo ufw status verbose
          You probably can create similar rules with gufw (you can with the kcm module), but I can't tell you how since I don't use it.

          Of course it's possible to create more detailed rules if you wish, the above are just examples.
          • Top
          • Bottom

          Comment

            #6
            Re: Guarddog

            Code:
            sudo ufw allow out dns
            returned an error message, so I used gufw to enable UDP on port 53.

            Now I see (I had to translate the output because I see it in the language of my system, so it may be different)
            Code:
            sudo ufw status verbose
Status: activated
Log: on (low)
Default: deny (ingoing), deny (outgoing)
New profiles: skip

A     Action       From
-     ------       --
80/tcp  ALLOW OUT     Anywhere
443    ALLOW OUT     Anywhere
123    ALLOW OUT     Anywhere
53/udp  ALLOW OUR     Anywhere
            Is everything OK?
            • Top
            • Bottom

            Comment

              #7
              Re: Guarddog

              Originally posted by verduz
              Do I have to edit the package list? How do I do this?
              Do I have to use another firewall? What firewall should I use (excluding firestarter)?
              nope, guarddog still can be restored, though manual actions are required:
              http://www.gerixsoft.com/blog/ubuntu/natty-guarddog
              • Top
              • Bottom

              Comment

                #8
                Re: Guarddog

                Hi! I have trouble to reach samba shares with this ufw settins:

                Code:
                $ sudo ufw status verbose
Status: active
Logging: on (medium)
Default: deny (incoming), allow (outgoing)
New profiles: allow

Do             Akce    Od
--             ----    --
6881            ALLOW IN  Anywhere
4444            ALLOW IN  Anywhere
137,138/udp (Samba)    ALLOW IN  Anywhere
139,445/tcp (Samba)    ALLOW IN  Anywhere
631 (CUPS)         ALLOW IN  Anywhere
59007           ALLOW IN  Anywhere
59099           ALLOW IN  Anywhere
137            ALLOW IN  Anywhere

$
                ufw.log:
                May 18 13:19:50 M1 kernel: [ 2815.589912] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57774 PROTO=UDP SPT=137 DPT=50164 LEN=70
                May 18 13:19:50 M1 kernel: [ 2815.860421] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57777 PROTO=UDP SPT=137 DPT=50164 LEN=70
                May 18 13:19:50 M1 kernel: [ 2816.131326] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57778 PROTO=UDP SPT=137 DPT=50164 LEN=70
                May 18 13:19:50 M1 kernel: [ 2816.406320] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57782 PROTO=UDP SPT=137 DPT=42948 LEN=70
                May 18 13:19:51 M1 kernel: [ 2816.676343] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57786 PROTO=UDP SPT=137 DPT=42948 LEN=70
                May 18 13:19:51 M1 kernel: [ 2816.946816] [UFW BLOCK] IN=eth0 OUT= MAC=00:22:5a:15:40:40:00:02:3f:b5:b3:8f:08:00 SRC=192.168.5.108 DST=192.168.5.221 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=57792 PROTO=UDP SPT=137 DPT=42948 LEN=70
                Why is it blocked? After restart or firewall reload/disable/enable - the same!
                • Top
                • Bottom

                Comment

                  #9
                  Re: Guarddog

                  Originally posted by iX
                  Hi! I have trouble to reach samba shares with this ufw settins:
                  Are the ufw status and ufw log from the server or the client?

                  And have you enabled the NETBIOS connection tracking module?

                  Here's a short howto on samba and ufw http://ubuntu.swerdna.org/ubusambaserver.html#firewall
                  (you can probably find more by googling ufw and samba)
                  • Top
                  • Bottom

                  Comment

                    #10
                    Re: Guarddog

                    I solved this! :

                    sudo ufw allow in proto udp from any port 137

                    • Top
                    • Bottom

                    Comment

                    Previous template Next
                    Working...
                    X