Re: some reality about iptables, please

To: Debian-User List <debian-user@lists.debian.org>
Subject: Re: some reality about iptables, please
From: Dave Carrigan <dave@rudedog.org>
Date: Tue, 26 Aug 2003 21:29:27 -0700
Message-id: <[🔎] 20030827042926.GB16599@rudedog.org>
Mail-followup-to: Debian-User List <debian-user@lists.debian.org>
In-reply-to: <[🔎] 1061946734.3524.23.camel@ganesha>
References: <[🔎] 1061946734.3524.23.camel@ganesha>

On Tue, Aug 26, 2003 at 09:12:15PM -0400, Bret Comstock Waldow wrote:
> I can find all the sites and advice I want about how to form iptables
> rules, but I can't find any decent discussion of how to enable the damn
> things.

For network interfaces, I usually stick it as a pre-up item in the
/etc/network/interfaces file:

 iface eth1 inet static
   address xxx
   netmask xxx
   network xxx
   broadcast xxx
   gateway xxx
   pre-up /etc/firewall/iptables.eth1 start
   post-down /etc/firewall/iptables.eth1 start

For PPP connections, stick a script in the /etc/ppp/ip-up.d directory.

-- 
Dave Carrigan
Seattle, WA, USA
dave@rudedog.org | http://www.rudedog.org/ | ICQ:161669680
UNIX-Apache-Perl-Linux-Firewalls-LDAP-C-C++-DNS-PalmOS-PostgreSQL-MySQL

Reply to:

References:
- some reality about iptables, please
  - From: Bret Comstock Waldow <bwaldow@alum.mit.edu>

Prev by Date: Re: COBOL compiler
Next by Date: Re: virus' on the list
Previous by thread: Re: some reality about iptables, please
Next by thread: Re: some reality about iptables, please
Index(es):
- Date
- Thread