[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Firewall in Sarge

On Fri, Oct 15, 2004 at 10:43:52AM -0400, Marc D Ronell wrote:
> >> "Douglas" == Douglas G Phillips <csdgp@eiu.edu> writes:
>   > On my system I put a firewall script in /etc/init.d 
> 
> I concur and did the same.

That seems to be the default, but I wonder for how long.  I don't
think I changed my setup.  /etc/init.d/iptables sources
/etc/default/iptables, which has some enlightening remarks:

# Q: You concocted this init.d setup, but you do not like it?
# A: I was pretty much hounded into providing it. I do not like it.
#    Don't use it. Use /etc/network/interfaces, use /etc/network/*.d/
#    scripts use /etc/ppp/ip-*.d/ script. Create your own custom
#    init.d script -- no need to even name it iptables.  Use ferm,
#    ipmasq, ipmenu, guarddog, firestarter, or one of the many other
#    firewall configuration tools available. Do not use the init.d
#    script.
(snip)
# Q: How do I get started?
# A: (Did I mention "do not use it" already? Oh well.)

So yes, it may work, but no, it does not seem like the best solution.

-- 
Maurits van Rees | http://maurits.vanrees.org/ [Dutch/Nederlands]
"Let your advance worrying become advance thinking and planning."
 - Winston Churchill
Reply to: