Florin wrote:
> Randy Welch <[EMAIL PROTECTED]> writes:
>
>
>>Has anyone had any success with it?
>>
>>It get's stuck on my system doing the initial configuration, ie. in
>>retreiving the network and other information from the install.
>>
>>I'd be happy to tweak it by hand ( got to figure out what/where it's
>>looking for and putting this information.)
>>
>>Any word on when the follow on product will be available?
>>
>>Thanks.
>>
>
> Hi there,
>
> what do you mean it gets stuck ? Of course, retreiving the infos will take
> some time ... patcience, Luke :)
>
> you can eventually display in the same time on the firewall console the
> logs with tail -f /var/log/httpd-naat/httpd-naat.error_log
>
Ok after updating to the latest cooker, I reinstalled my
firewall with the latest and greatest and I was able to
actually go through the configuration! Yippee!
However I have a few ocmments about the new SNF...
1. It would be nice when doing the setup it could fetch the
time configuration and default route from the network config
during setup.
2. When setting up the web proxy you are asked to select
what you want for filtering ( DansGuardian or nothing )
however in order to set things up like time limits you
really do have to select squidGuard for at least banner
filtering. I do *like/want* the time restriction provision
to be there by default. (If one leaves DansGuard selected
how do you configure it).
3. The configuration of the actual firewall is not geared
towards your usual user. I know mandrake prides themselves
on the ease of use factor, which even applied to SNF. You
didn't need to be a network admin to setup. The 8.2 one I
think you do.
It is neither intutive or easy. The old 7.2 based SNF was
fairly easy to configure for basic usage. You could just
select the services you wanted to use by selecting the
services you wanted to go through all at once, instead of
picking each service one at a time.
This needs work in order to appeal to linux newbies or those
who really really don't want to be firewall gods.
4. With the configuration ( which I'm not sure I've done
right.. ) the only way to surf the web is through squid. I
can't talk to my caching name server and I get rejection
packets when I try to access a web address via ip address. (
nothing in the log though...)
-randy
