Lan to Wan reprise
Claude Jones
claude_jones at levitjames.com
Mon Mar 14 01:53:17 UTC 2005
Jeff Vian wrote:
>On Sun, 2005-03-13 at 20:16 -0500, Claude Jones wrote:
>
>
>>
>>I'm reading up on how to set up some sort of trace to log what's going on
>>as I write.
>>
>>I hope someone who's an iptables guru can find the time to look through my
>>script. I have the feeling this is a case of "The Purloined Letter". The
>>answer is in front of my face but after 18 hours of fighting this, I'm
>>blind ---
>>
>>
>>
>
>Just a thought. What did you use to create the firewall script?
>
>As one who is not a guru on iptables I find fwbuilder a very good tool
>for what I need and it does the script building for me. As long as you
>can build the firewall rules with graphics objects it can convert it to
>a usable script for setting the rules on the server for you.
>
>I have used it for both servers on the internet, and for firewall
>machines as you are doing.
>
>
>
I used the excellent Gandalf tutorial at Linux Exposed:
http://www.linuxexposed.com/Articles/Security/Linux-stateful-firewall-design.html
I got some further ideas from an earlier reply I got from Arthur
Pembleton to this thread. It's just done in gedit.
More information about the fedora-list
mailing list