-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 09 August 2004 03:02:03, Thereidos wrote: > Alright, now goes my story : > I've installed Firestarter and configured it using it's wizard. Everything > seemed alright but the main window kept crashing... so I switched to > KMyFireWall and configured it. > Test at www.grc.com showed that all my ports were stealth. That's good. So > I ran 'install firewall'. It showed up that my firewall is configured and > will run at system bootup. > > I've made the same test right after system booted and firewall wasn't > running... To make everything work again I must run kmyfirewall and click > 'run firewall'. > What might be the problem 'round here? > May it be iptables (they doesn't seem to start at bootup)?
Good question, and yes to run a "Firewall" you need iptables running at boot. They usually are shown as stopped after boot, but that's because they only need to run long enough to load "the rules" in memory. What people call a fire wall is actually a wrapper of some sort to pass rule sets to iptables which passes them to NetFilter, which is a module or an integral part of the kernel, at boot to help control the ports on your system. Among other things. Confused yet? (; The wrappers are supposedly designed to make it easy to pass rules down the chain that close and open ports so that services required for your set-up and configuration are able to run and access what they require. Notice I said supposedly? You can (as super user in a terminal) use chkconfig iptables on or in the drakxservices menu put a check mark for start at boot and then hit the start button or I believe there's another interfering wrapper available now called drakfw for this purpose that is intended to wave the baton for the whole parade. I'd do the drakxservices thing. It's the simplest graphically. If drakfw is on the list you may want to check that as well. Charlie Hmmm... A passing thought. If each kernel in the disparate systems around the world were actually an artificial neuron, and if all of those neurons are connected by wires, fibre optics, various electromagnetic frequencies etc,; and if the only difference between the human mind and a single celled life form is the number of neuron linkages, have we built an electronic amoeba? How long before the number of connections is on the close order of that of the human brain and it wakes up? Maybe that's really why there are firewalls, to keep the number of connections below that critical mass. C. - -- Edmonton,AB,Canada User #244963 at http://counter.li.org Mandrakelinux release 10.1 (Beta 1) for i586 kernel 2.6.8-0.rc2.2mdk 10:34:10 up 3 days, 23:27, 1 user, load average: 0.04, 0.17, 0.18 Today is what happened to yesterday. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFBF60GZqvqlrLPr5YRAt5aAJ9y0J9N97DV/9oQKfH1MH8YYlmaEQCeLAzx 1hoJjgxbxMV9JDK8DRe8Pk0= =ofVx -----END PGP SIGNATURE-----
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
