can I check if the firewall is running

…with scripts like
sudo netstat -natp | grep ‘firewall’

Thanks a lot!

sudo /sbin/rcSuSEfirewall2 status

If you want to test the firewall efficiency, there are some web site to test the protection of your computer, like Firewall Test, Web Tools and Free Internet Security Audit

as long as it is running… I have no need to test it. guess I would not understand those responses.
but, i have disabled ‘sshd’ service, and installed ‘denyhosts’ from opensuse communities: Webpin
I dont know should I continue to install ‘fail2ban’? (from the same repository)
Thanks a lot.

The SuSEfirewall2 is pretty good. It denies nearly everything by default. You can see what is currently allowed by going to Yasy → Security and users → Firewall → Services. Remove any you don’t want.

Use fail2banif you’re at “paranoid” level, I don’t use it myself. Here’s a Fail2ban HowTo for openSUSE:
Preventing Brute Force Attacks With Fail2ban On OpenSUSE 10.3 | HowtoForge - Linux Howtos and Tutorials

are you sure? says ‘command not found’…
btw, in firewall, allowed services column is blank. Should I check the ‘protect firewall from Internal Zone’?

It’s case sensitive and requires the sudo. Might be better to copy/paste it into the console window.

(a)If there are no services defined, then you have maximum protection.
(b)No you shouldn’t check to protect from internal zone. It’s enough that you put the network interfaces into the external zone in the section “Interfaces”.

rotfl! it says ‘running’.
further I disabled sshd service without installing fail2ban.