There are lots of IPFWADM rulesets out there though some are better
than others. Since you want your INCOMING traffic to be limited
to a VERY granular level, I think the TrinityOS ruleset would be
a good fit. Check it out:
http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS.wri
--David
>I am running kernel 2.0.35 with ipmasq. All have been working perfectly for
>quite some time now. I would however, like to install a complete firewall
>and limit all services to email and web only, or on a per machine basis
>allow only web access and email access to the workstations on our lan. When
>I install firewall rules by deny first, then allow localnet traffic,
>automatically all services are available to all workstations. I would like
>to select which services each workstation can use or abuse. ;)
>
>Does anyone have any examples that I can try out?
.----------------------------------------------------------------------------.
| David A. Ranch - Remote Access/Linux/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
