On Tue, Aug 17, 1999 at 08:23:19PM +0300, Ariel Biener wrote:
> > If neither is available, you'll have to resort to non robust
> > solutions, such as countingon the port number being the same across
> > reboots, or opening up a port range.
>
> It just occured to me that one could run a script immediately after the
> portmapper and the rpc services are up to create a dynamic firewalls
> ruleset.
This is a good idea; it won't fit here because the firewall machine
and the NFS-exporting machine are different boxes, and they don't
reboot at the same time so you can't have the init scripts of one (the
NFS-exporting machine) affect the other (the firewall).
But thanks anyway.
--
Alex Shnitman | http://www.debian.org
[EMAIL PROTECTED], [EMAIL PROTECTED] +-----------------------
http://alexsh.hectic.net UIN 188956 PGP key on web page
E1 F2 7B 6C A0 31 80 28 63 B8 02 BA 65 C7 8B BA
"Everything that can be invented has been invented."
-- Charles Duell, head of the U.S. Patent Office, 1899
PGP signature
