At 04:30 30/11/99 -0800, you wrote:
>
>I didn't have time to become an ipchain expert before bringing up a firewall
>on a home server. (It's like the internet is a parrona filled river and my
>server is a piece of meat!) so I went out to :
>http://linux-firewall-tools.com/linux/firewall/index.html
>
>There is an automated tool that gave me a great start! However, there are a
>couple of things that I would like to change but not really understanding
>ipchains can't.
>
>1. My server can't send email out while the firewall is up. I need to be
>able to do this.
Just for experimentation can you
i) ping the relay server by number from the firewall.
ii) ping it by name.
iii) telnet to the relay
iv) telnet to the relays port 25.
v) Try setting SMTP_SERVER="any/0" temporarily.
Hmm just checked one of mine - all servers are referred to
by number rather than name.
(I have used that firewall tool for many sites - a great bit of work and I've
not had any problems with mail services. So at least I'm sure it works.)
>
>2. My Daughter uses Gamespy to play Quake 2 but the firewall prevents this.
I think you might need to load the ip_masq_quake module for this. You
should be able to make it from the kernel source tree if it is not already
in /lib/modules/something/ipv4
hih
nick@nexnix
