Hello, Concerning the default config of shorewall, I suggest that the default rule for wan->all is set to DROP rather than REJECT. I think it's better in term of security (ref. Linux firewalls by R.L. Ziegler). In the same spirit, for boxes connected by ADSL or dial-up (and perhaps ISDN but I don't know), I suggest that the interface defined for wan is set up to ppp+. By experience, I've started by using eth1 (where is connected by ADSL modem) and spent some time to find why my connection was not working.
Cheers Marc Bethenod __________________________________________________________________ Your favorite stores, helpful shopping tools and great gift ideas. Experience the convenience of buying online with Shop@Netscape! http://shopnow.netscape.com/ Get your own FREE, personal Netscape Mail account today at http://webmail.netscape.com/
