Iplementing a firewall after-the-fact
Alexander Dalloz
ad+lists at uni-x.org
Wed Dec 1 23:50:21 UTC 2004
Am Do, den 02.12.2004 schrieb Eric Wagar um 0:38:
> Is there a safe way to implement a firewall (ipchains/iptables) after
> the fact? After the fact being after I have already deployed the system
> at a remote site?
> eric
Create a cronjob which flushes all iptables rules lets say every 15
minutes. This way you could do silly setup errors and within a maximum
of 15 minutes you can again connect the remote host through SSH.
Alexander
--
Alexander Dalloz | Enger, Germany | new address - new key: 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora GNU/Linux Core 2 (Tettnang) on Athlon kernel 2.6.9-1.6_FC2smp
Serendipity 00:48:29 up 11 days, 19:36, load average: 0.66, 0.42, 0.60
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20041202/bb744e22/attachment.sig>
More information about the fedora-legacy-list
mailing list