On 30 Oct 2004, email@example.com wrote:
> I have to configure a debian mashine with 3 NIC. One of them should have
> real IP address 188.8.131.52. Another two should be part of private
> networks. On this mashine there is ipchains. How to configure it, how
> to store configuration and how to make it to be started during the boot
My recommendation would be to move to iptables rather than ipchains.
Anything with a 2.4 or later kernel comes with iptables out of the box
in Debian, as I understand things.
I would also recommend using some sort of helper script to do the
configuration for you: 'firehol', in testing or at
<http://firehol.sf.net/> is my choice.
Using that sort of higher level tool will allow you to focus on the
detailed rules for the firewall rather than low level implementation
details like this.
Anyway, if you really want to write your own script the traditional way
is to either create a script run from the 'ifupdown', or as an init.d
If you take the later route, copy /etc/init.d/skeleton to whatever name
you chose, and hook it into the boot system as normal.
Fortune rarely accompanies anyone to the door.
-- Balthasar Gracian
- From: office <firstname.lastname@example.org>