Mal Herring ha scritto:
Sure!!! Not only, you can have multiple firewalls in the same file, then compile whatever you want.Frankly, fwbuilder or guarddog would be a very nice front-end for iptables/netfilter. AS you mentioned, you _don't_ really want to know that much, so these programs would actually do all the behind the scenes for you automatically.
Thanks for the comments all - however I forgot to mention that the box in question does not run X and I have no plans for it to given its required role.
So, could I use fwbuilder to compile a script and then transfer it to the soon to be live box ?
Thanks in advance....
For example I've a internal server that run vnc (remote framebuffer), from this one I use fwbuilder to configure three firewalls, one near and two far far away (tm).
After a firewall generation use vim to check/modify and scp to move it.
All from a windoze workstation (don't blame me it's a must here)
;-)
-- [email protected] mailing list
