[LON-CAPA-dev] firewall question (a monthly periodical?)

[Scott Harrison]

Dear Guy:

http://help.loncapa.org/cgi-bin/fom?file=210

Pending question:

Firewall - other than possibly interfering with needed internet ports,
will iptables significantly slow up LON-CAPA network connectivity?

.
.
.

Since "firewalls?" gets asked on the list every month...
now could be the time to FAQ it.

I have had really good experiences with iptables (ipchains on the other hand is
abominable and almost deprecated).  But I'm not sure if it would be
CPU-expensive, or bottlenecks the network connection during server peak usage
points.

Should we make iptables part of the default installation?
So long as its correctly configured, it can only make security
better as well as keeping track of which network ports
really are needed.

Regards,
Scott

-- 
Scott Harrison, sharrison@users.sourceforge.net