Re: Debian equivalent of rc.firewall??

To: Carel Fellinger <cfelling@iae.nl>
Cc: debian-firewall@lists.debian.org
Subject: Re: Debian equivalent of rc.firewall??
From: Tamas TEVESZ <ice@extreme.hu>
Date: Sun, 24 Dec 2000 02:22:44 +0100 (CET)
Message-id: <Pine.LNX.4.21.0012240218191.31567-100000@mailtrans.sote.hu>
In-reply-to: <20001224021212.A8250@animus.fel.iae.nl>

On Sun, 24 Dec 2000, Carel Fellinger wrote:

 > The problem with this is that I don't have an IP until after my outgoing
 > interface is set-up:( I get my dynamic IP through dpcpc, so how can I
 > get out this catch-22?

not neccessarily. first thing is, you can arrange your rules so that
it may be enough to use interface names only (dunno your setup there -
i'm assuming some kind of dialup connection-thingy), or second, at the
very early stages of the initialization of the system you disable all
communication that's not thru lo, in any direction. then you dial in,
get your ip, do black magic with that as you prefer, then remove the
block rules from your fwchains.

be creative :)

-- 
[-]
``And there are plenty of other innovative pieces of software such as Napster
and ICQ.'' -- comment on ``Systems Software Research is Irrelevant'' at
http://freshmeat.net/news/2000/08/05/965534399.html

Reply to:

References:
- Re: Debian equivalent of rc.firewall??
  - From: Carel Fellinger <cfelling@iae.nl>

Prev by Date: Re: Debian equivalent of rc.firewall??
Next by Date: Re: Debian equivalent of rc.firewall??
Previous by thread: Re: Debian equivalent of rc.firewall??
Next by thread: Re: Debian equivalent of rc.firewall??
Index(es):
- Date
- Thread