On Thu, 13 Dec 2001 11:12:34 -0500 Kathy Montgomery <[EMAIL PROTECTED]> frantically pecked out this message:::::
> I understand (from a previous post) that Bastille is a front-end for > configuring iptables. Does this mean that I should only use the > InteractiveBastille to configure my firewall and not use the iptables > command itself to define rules? > > In the process of attempting to learn iptables, I saved some custom > rules using "service iptables save", but they were not being restored on > subsequent boots. I think this is because Bastille is started right > after iptables and is setting up iptables rules according to how I > configured Bastille, thus wiping out my manual changes. > > So to change my firewall setup, should I be using Bastille's > configuration methods? Do I need to drop Bastille in order to configure > iptables manually, or can I use both? > > Thanks, > Kathy > > -- > For God has not given us a spirit of fear, but of power and of love and > of a sound mind. - 2 Timothy 1:7 Kathy, Bastille-firewall is a collection of config files and a script that works "with" iptables to form a firewall. Bastille-firewall is the actuall firewall software that uses Iptables as opposed to ipchains. InteractiveBastille, on the other hand, (which is located in /usr/sbin/InteractiveBastille) is a front end configuration tool to harden your entire system. the quickest and easiest way to configure Bastille-firewall and get it running, and this is just a basic, but fair firewall, is to use the firewall config tool found in Mandrake control center. This will perform a basic firewall configuration by asking you a few questions that you answer to tell Bastille just what you want to leave open and what you want to close. after that is finished your "basic" firewall is in place and operating. after this point it starts automagically everytime you boot your computer. Once you've configured and started your firewall I strongly urge that you learn Iptables, what they're all about, how they're contructed and what you can do with it. For my money Iptables is the BOMB! The site listed below is THE best iptables tutorial I've seen yet. this fella really know what he's talking about and puts it in plain, simple english. you can't miss with this one. http://people.unix-fu.org/andreasson/iptables-tutorial/iptables-tutorial.html -- daRcmaTTeR Registered Linux User 182496 Mandrake 8.1 --------------------------------------------------------------------- 11:05pm up 4 days, 1:00, 2 users, load average: 0.35, 0.21, 0.26
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
