“This article shows how to secure a CentOS server using psad, Bastille, and some other tweaks. psad is a tool that helps detect port scans and other suspicious traffic, and the Bastille hardening program locks down an operating system, proactively configuring the system for increased security and decreasing its susceptibility to compromise.”
Secure a CentOS Server Against Attackers
Submitted by falko 2006-08-23 Red Hat 4 Comments
I prefer to use iptables directly or shorewall.The bastille firewall isn’t exactly what you call feature rich.