shorewall has taken a bashing on this list, with many suggesting alternatives, eg gshield, guarddog, firestarter, etc.
i just wanna relate my own good experience. i was trying to configure my mdk 9.0 box to share my internet connection with a small home network consisting of 3 win9x pcs and 2 linux boxes. i first used the internet connection wizard in mcc, which didn't work. went to www.shorewall.net, and the quickstart guide suggested the two interface config. instead of using it wholesale, i compared the config files, found a few differences, opened up the ports i needed, restarted shorewall, and it worked. the entire process took me around 15 mins, included reading the stuff at www.shorewall.net. i think the essential diff was mdk 9.0 tried to 3 zones in their shorewall config, while the two interface version of the quickstart guide used 2 zones. (if you dun understand what i'm saying, just spend a couple of mins with www.shorewall.net) i'm no expert, and i'm sure the mdk developers had a good reason to do what they did, but this setup worked easily for me. others trying to configure shorewall can also search the archives for a couple of extremely well written Derek Jennings posts in Nov 2002. ----- Original Message ----- From: Robert Wideman To: [EMAIL PROTECTED] Sent: Sunday, March 02, 2003 17:59 Subject: RE: [newbie] IPTABLES rules for Direct Connect ? Actually Stephen is correct. Of all the iptables GUI or configurator applications Shorewall was the worst. It took me 30 mins after the first time of installing MDK9 was i able to figure out what the hell was going on with my box...not able to get out of the local box. I remember that Shorewall was a firewall using IP Tables. I listed the current rules of iptables "iptables -L" and it listed a crap load of them by default from shorewall. I disabled shorewall and i was able to connect just normal. So on your understanding of what Stephen stated that it was "dont use linux" is totally misunderstood. Reread his message. It stated "dont use shorewall"....did it say anything about dont use "linux"????...NO IT DID NOT. You asked what the solution was....he simply stated "dont use shorewall". I agree with Stephen. Dont use Shorewall....not linux just shorewall. Rob -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Bela Markus Sent: Sunday, March 02, 2003 2:57 AM To: [EMAIL PROTECTED] Subject: [newbie] IPTABLES rules for Direct Connect ? Hi Stephen, you advice is not very constructive. Sounds like: dont use LINUX, do not use LINUX, etc. Doesn't matter is it SHOREWALL or else, the key is the IPTABLES, oll others just cosmetics. Now I see, original subject was misleading. The right would be " IPTABLES rules for Direct Connect". Best regards... Bela Stephen Kuhn wrote: On Sat, 2003-03-01 at 18:11, Bela Markus wrote: Hi, I spent nights without any success to configure SHOREWALL in 9.0 to run Direct Connect (DC++ exactly) to run in active mode. Is there a solution out there? Regards... Bela, HA5DI Yes. Don't use SHOREWALL. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
