Re: iptables

To: debian-devel@lists.debian.org
Subject: Re: iptables
From: Brian May <bam@debian.org>
Date: 07 Dec 2001 10:38:45 +1100
Message-id: <[🔎] 84u1v3j4vu.fsf@scrooge.apana.org.au>
In-reply-to: <[🔎] 20011204111712.L16076@wiggy.net>
References: <[🔎] 847ks3evbl.fsf@scrooge.apana.org.au> <[🔎] 20011204111712.L16076@wiggy.net>

>>>>> "Wichert" == Wichert Akkerman <wichert@wiggy.net> writes:

    Wichert> Previously Brian May wrote:
    >> On my computer, I have iptables configured in
    >> /etc/network/interfaces using the "up" and "down" scripts.

    Wichert> Different remark: you should configure your firewall
    Wichert> before you bring the interface online, otherwise there
    Wichert> will be a window during which you are completely open. So
    Wichert> either use pre-up, or even before the networking script
    Wichert> is run.

Thanks for the suggestion. I have changed the scripts to use "pre-up"
and "post-down".

I also have the scripts log the tables before and after it is executed
each time, hopefully next time my computer boots I may find out what
is going on...
-- 
Brian May <bam@debian.org>

Reply to:

References:
- iptables
  - From: Brian May <bam@debian.org>
- Re: iptables
  - From: Wichert Akkerman <wichert@wiggy.net>

Prev by Date: Re: apache non-free?
Next by Date: Re: apache non-free?
Previous by thread: Re: iptables
Next by thread: Re: Debian trademark [was: Debian GNU/w32, may ready to be started?]
Index(es):
- Date
- Thread