Re: Firehol question
Il giorno dom, 09-01-2005 alle 20:44 -0800, JM ha scritto:
> I have iptables but decided to use firehol. If my understanding is
> correct, I should stop iptables when using firehol because firehol uses
> its own, that is, i need to to do 'update-rc.d -f iptables remove' in
> order for firehol to "take over". Is this correct?
yes, firehol is a sort of front-end to iptables.
[...]
> Is this an acceptable configuration? Any hints on how to make this better?
I'd use:
interface eth0 internet src not "${UNROUTABLE_IPS}" \
[ dst $ip ] # if your ip is static
policy reject
protection strong
Ciao,
Gian Piero.
Reply to: