[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]


On 30 Oct 2004, office@pirdop.digsys.bg wrote:
> I have to configure a debian mashine with 3 NIC. One of them should have
> real IP address Another two should be part of private
> networks. On this mashine there is ipchains. How to configure it,  how
> to store configuration and how to make it to be started during the boot
> process?

My recommendation would be to move to iptables rather than ipchains.
Anything with a 2.4 or later kernel comes with iptables out of the box
in Debian, as I understand things.

I would also recommend using some sort of helper script to do the
configuration for you:  'firehol', in testing or at
<http://firehol.sf.net/> is my choice.

Using that sort of higher level tool will allow you to focus on the
detailed rules for the firewall rather than low level implementation
details like this.

Anyway, if you really want to write your own script the traditional way
is to either create a script run from the 'ifupdown', or as an init.d

If you take the later route, copy /etc/init.d/skeleton to whatever name
you chose, and hook it into the boot system as normal.

Fortune rarely accompanies anyone to the door.
        -- Balthasar Gracian

Reply to: