Re: Shorewall Firewall with dynamic interfaces
On Sat, 20 Sep 2008 11:06:24 +0300
Andrei Popescu <andreimpopescu@gmail.com> wrote:
> [I have wrapped all your lines to less than 80 characters]
>
> On Sat,20.Sep.08, 00:38:11, Amit Uttamchandani wrote:
> >
> > Following the setup for shorewall firewall I was able to get it up and
> > running for the eth1 interface (local wired RJ45). Now, I would also
> > like to setup my wireless adapter with shorewall (eth0). How is this
> > done?
> >
> > Is it as simple as adding:
> >
> > net eth0 detect dhcp,tcpflags,logmartians,nosmurfs
> >
> > in addition to eth1 in /etc/shorewall/interfaces?
>
> If the 'net' zone is suitable for your needs then yes. Otherwise you can
> create a dedicated zone for it.
>
I think the net zone is suitable (for now at least).
> > The thing is, at home I use a wired connection (eth1) but when I go to
> > the lab I will be using wireless (eth0). Can shorewall be configured
> > to do this? I know firestarter couldn't and I had to remove it.
>
> This is only scratching the surface of what shorewall can do ;)
>
Yes, shorewall is very powerful!
Also, do you get the error:
touch: cannot touch `/var/lock/subsys/shorewall': No such file or
directory done.
I did a google search and this is basically a state file written by
shorewall to indicate a successful start up. Should I just create this
file?
Thanks again for you help.
Amit
Reply to: