Hello all I just finished my early beta version of a shellscript based weblet. It is ment to configurate a firewall with shorewall, but this does a lot more as iptables include also portforwarding etc. IMHO The rules are also more logical, as the routing is done before with destination nat or after the firewall rules with sourcenat , so you can use the "real ip addresses with your firewall". I wrote this weblet mainly to see if it is possible (for me ;) ) to do such a thing with only a shell script. should become in the end something like webmin but without perl ( size). Certainly there can be things improved, but some usefull shortcuts used in one shell didn't work in the other so i stayed with a rather primitive logic ( not that i would be able to do much better :) ) Test this only if you are brave and please don't use your carefully firewalled production box. It works for me on a pentium 60 32 MB.with a dmz, internal and external network . Feel free to test, comment , laugh, cry flame and so on. I have some principal questions. -Is somebody interested at configuring a box over a webconfiguration.at all. - is the risc of a weblet running as root acceptable ( I personally think it probably isn't.) A solution to this could be what i did in the first place make a copy of the configuration scripts, made the copies available to the webserver -user. after finishing i copied the files back as root. There are not much comments in the scripts, for reasons of speed, but i tried to choose names that make things clear enough. http://leaf.sourceforge.net/devel/ericw/webcfg.php Have fun Eric wolzak _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/leaf-devel
