Re: stretch vs iptables auto-start

To: debian-user@lists.debian.org
Subject: Re: stretch vs iptables auto-start
From: deloptes <deloptes@gmail.com>
Date: Sun, 23 Aug 2020 22:10:10 +0200
Message-id: <[🔎] rhuif2$7pa$1@ciao.gmane.io>
Reply-to: deloptes@gmail.com
References: <[🔎] 202008231426.19755.gheskett@shentel.net>

Hi Gene,

Gene Heskett wrote:

> Since the big conversion of file structs vs who owns what, which
> apparently includes running rc.local as the logged in user and not as
> root, that has hidden the iptables stuff from everybody but root since
> its not now in the users $PATH.
> 

I was running home brew iptables firewall until couple of months ago. It was
time to upgrade since iptables is getting replaced by net filter
(nftables). It was obvious that at some point an upgrade is inevitable.

After researching some options I picked up shorewall and I am very happy
with it.

My requirement was to be able to easily configure and maintain a firewall
with at least 3 (three) network cards Internet, Intranet and DMZ.
Accent put on easy to configure - and I must admit the shorewall thing is
amazing.

> So what is the best way to assure this stuff gets started during a reboot
> or restart of X? Stuff that s/b running regardless of any X restarts
> until the next full reboot?  Stretch, uptodate plus tde here.

I don't know if it suits your needs - you might be looking for a desktop
firewall, which I do not need and thus don't know ... but keep in mind that
at some point in the future nftables will be the king.

regards

Reply to:

Follow-Ups:
- Re: stretch vs iptables auto-start
  - From: Gene Heskett <gheskett@shentel.net>

References:
- stretch vs iptables auto-start
  - From: Gene Heskett <gheskett@shentel.net>

Prev by Date: Re: Strange behaviour in plasma5
Next by Date: Re: Homebuilt NAS: System Drive Filesystem?
Previous by thread: Re: stretch vs iptables auto-start
Next by thread: Re: stretch vs iptables auto-start
Index(es):
- Date
- Thread