im not behind a router so i take it i will need some sort of firewall to run on ubuntu ? can you recommend a good one that is easy to use ? im new to linux still.

I am paranoid enough to say that I think everyone needs a firewall. The internet is a dangerous place.

Check out UFW (Uncomplicated Firewall) found in Ubuntu. Easy to configure and easy to use.

https://wiki.ubuntu.com/UbuntuFirewall

I am paranoid enough to say that I think everyone needs a firewall. The internet is a dangerous place.

Check out UFW (Uncomplicated Firewall) found in Ubuntu. Easy to configure and easy to use.

https://wiki.ubuntu.com/UbuntuFirewall

according to my system it says it's already installed. how do i configure it ?

Forgetting paranoia for a moment, unless you are running any server environments, eg a mail server or a server with a website on it, you don't really need to do anything other than use the default that is installed in ubuntu, iptables, which is actually the firewall. UFW is not a firewall, but merely the means by which you can if needed configure your firewall (iptables).

When I first started running ubuntu with Hoary Hedgehog 3 years ago, I always had bith firestarter and clamav, the virus checker, installed and ran them both. Now I don't have either and see no reason to install them on my desktop only machine. If you want to check your computer current situation go here (http://www.grc.com/intro.htm) for a port scan. Hopefully you will find that it passes and is, in effect, invisible on the net.

Only if you plan on running servers do you need a firewall. Is this in your future?

You can install Firestarter to configure it

You can install Firestarter to configure it

so firestarter will allow me to configure the firewall ?

https://help.ubuntu.com/community/Firestarter

im not behind a router so i take it i will need some sort of firewall to run on ubuntu ?

Heavens above, what gave you that idea? With a default install there is nothing to connect to on your machine. You are unreachable from the internet.

generally you don't need a firewall or rather you don't need to alter its default rules.

Unless you plan on running some services on your machine

Unless you plan on running some services on your machine

Exim4 is operating quite happily and very securely on this machine without having the slightest need for a firewall.

sudo ufw default deny
sudo ufw enable

If you need port 80 open:

sudo ufw allow 80

To remove:

sudo ufw remove allow 80

With the Internet its good to be redundant and have layered protection
both hardware and software. Besides that its good to get to know firewalls
and ports management. Firestarter is a good one to start with because its already included. Just start synaptic package manager and it should already be in the list. This links explains more fully how to set this up. http://useopensource.blogspot.com/2007/03/how-to-setup-firewall-in-ubuntu.html

With the Internet its good to be redundant and have layered protection both hardware and software.]
and totally unneeded in most cases in linux.

FYI Link for Firestarter setup guide pdf-
http://www.fs-security.com/docs.php#docsdownload

i know ubuntu comes with iptables now, i didn't know that before. i went gufw as the graphical interface for the firewall. i have one question, im in stealth mode but do i have to open a port for transmission "p2p" ? if so which one should i allow ?

smooth3006, it depends on which port you configure your p2p client to run on. In the settings portion of your client it will tell you, however, most people recommend you run it on the non standard port. Then, open that port in your firewall.

smooth3006, it depends on which port you configure your p2p client to run on. In the settings portion of your client it will tell you, however, most people recommend you run it on the non standard port. Then, open that port in your firewall.

im in the transmission settings right now and it shows the port it will use as 51413 and it's status says "closed". should this be the port i allow from my firewall ?

Correct, then you can check it with an online port check site such as http://www.canyouseeme.org/ Just put the port you want checked it and if transmission is running it will say "I can see your service on whatever port"

Correct, then you can check it with an online port check site such as http://www.canyouseeme.org/ Just put the port you want checked it and if transmission is running it will say "I can see your service on whatever port"

thanks i did it and transmission shows the port as open now. i also ran a firewall test and it still says im totally protected and stealth. :)