M. Herbert.... I don't know if you've seen this package, but from the docs it appears to be exactly what you're looking for in easing your firewalling troubles...
http://users.dhp.com/~whisper/mason/ It's called MASON, and it's supposed to be a very good firewalling setup tool. You basically install it, get some of the basics up and running, and then after a while, you can tell MASON to build your firewall rules for you. It's supposed to track the activity through the logs, and then create all the ports, services, and policies for you. I was going to use it for a FreeS/WAN implementation I was doing last August, but ultimately didn't need it for my project. But from what I saw, it looks like it can do a pretty good job of easing the setup for you. Give a look, I'd be interested in your feedback as to what I missed out on. Robert Toth President Solution Informatique Toth, Inc. Web: http://www.solinfo.cx Email: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> Tel #: (514) 945-5701 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Richard Hebert Sent: October 15, 2001 8:50 AM To: [EMAIL PROTECTED] Subject: Waiting for 7.2 ..or the story of a quack Why im not so eager to go through this again ... On the first day .. i got meself a boxed set.. went home. Tried to install only to get into real shit cause i had hardware trouble, ended up changing the motherboard..( was a coincidence ...really ) On the second day .. ( which was really the fourth cause finding a motherboard here is like finding the mona lisa in a box of cracker jacks ) It did install..and i made the mistake of saying i wanted a medium security firewall. ( built in firewall ....almost feels Microsoftish ) On the third day .. i was away... so i dont know why i mention it ... On the fourth day... ah yes,this is where it gets interresting.I install DSL, set up the lan and this is were disaster strikes. Whatever i do, whatever firewall script i use ,even Firestarter all of them fail to enable me to share the connection with iptables. Even now .. I did like a good week total to solve the firewalling/sharing issue but it's a no go. Firewalling is the weak point in my modest opinion in release 7.1 Im not an idiot..( this is strictly the opinion of the author and his views might not be shared by the audience or by this station ) And i did go for the iptables tutorial and followed it to the letter...still no go ! This is the only negative point i can tell about 7.1 .Firewalling is way more difficult to implement than it was on 7.0.. i installed firestarter..and voila. I beleive im the common folk. I have a lil bit of experience with computers. Now when faced with the issue of firewalling with 7.1 i did give it my best shot and hacked ...and still am today,i feel like this is way too complicated. Hopefully this will get better with a new release. Though im not sure i wont keep 7.1 till the much awaited RH 8 : ) But for the record. Better firewalling, easier, more flexible is essential. A firewall building script should be added. Few simple questions like A have a lan ? want to share connection ? B want IRC DCC sends C .... Then bingo nice firewall and no hassle. As for 7.2 ...well im not so eager to jump to it right now..unless firewalling is much and i mean much improved.. this 7.1 has been a very stable platform. I realise i sound like a kid writing his mom ....gday : ) Richard _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _______________________________________________ Seawolf-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/seawolf-list _______________________________________________ Seawolf-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/seawolf-list
