Phew.
Spent the day getting 'echowall.lrp' into shape.
I know I know...there's no market for such things, but
I hate half-finished endeavors. ;) Download at:
ftp://ftp.echogent.com/EchoWall/echowall.lrp
There's a README and md5 hash there in that
directory too.
Here's the "what makes echowall different" pitch:
essentially, its aim is simplicity for the most entry
level user.
It fairly simple compared to Seawall: no DMZ
support yet, and no QoS stuff. It presumes the user
is using LRP as a masquerading firewall/router for
a single Class-C address range. So, an "eighty-percent"
solution, and a stepping-stone for my ICSA-certification
endeavor.
Also, it makes use of the MACID-based server
identification so that, for example, you could setup
a machine to be a webserver and *still* have that server
get its IP-address via DHCP.
In general, it's the genesis of what we spoke
about in that thread from a few months ago, the "Grand
New Firewall Paradigm" one. So, there's a boilerplate
rules file, a user-customizable config file, and a main
script which munges the two into an ipchains executable.
The main script also lets you 'install' the firewall to
setup at boot, or 'deinstall' it to sit idly.
Anyhow, I think it's pretty good. If you could,
please download it and kick the tires. Based on your
guys' preliminary feedback, I'll decide whether to unleash
it upon the main LRP list.
Feedback welcome, of course, Thanks!
-Scott
_______________________________________________
Leaf-devel mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-devel
