Last time I checked lokkit didn't do iptables, and ipchains isn't as secure as iptables. RHL 7.1 has a custom-coded, complex interface to iptables, (which was terribly bug-ridden, I heard, but that's supposedly fixed now) and the documentation for that didn't exist last time I checked. Not to mention that everything to do with iptables was unsupported as well. So does anyone know what Red Hat is doing about iptables support? All of the firewall tools are useless to me if they don't do iptables.
Thanks, Matthew >>> [EMAIL PROTECTED] 10/15/01 14:48 PM >>> | From: Richard Hebert <[EMAIL PROTECTED]> | It did install..and i made the mistake | of saying i wanted a medium security firewall. ( built in firewall ....almost feels | Microsoftish ) | I install DSL, set up the lan and | this is were disaster strikes. Whatever i do, whatever firewall script i use ,even |Firestarter | all of them fail to enable me to share the connection with iptables. Even now .. | I did like a good week total to solve the firewalling/sharing issue but it's a no go. | Firewalling is the weak point in my modest opinion in release 7.1 I don't understand. lokkit is what they use for firewall setup. Simpler and cruder cannot be imagined. Don't like it? Run lokkit and tell it to not install a firewall. Change your mind? Run it again. I don't like lokkit much, but it couldn't be simpler. The worst thing about lokkit is that it doesn't remember previous settings. You start from zero each time. lokkit is simplistic. But firewalling is potentially very complicated. I don't think most folks could handle the complexity. The complexity is in deciding what policy makes sense and is workable for each protocol and service. lokkit's tradeoff is probably appropriate for a univerally deployed tool. And I think that it was well past time for Red Hat to include a universally deployed firewall configuration tool. Hugh Redelmeier [EMAIL PROTECTED] voice: +1 416 482-8253 _______________________________________________ Seawolf-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/seawolf-list _______________________________________________ Seawolf-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/seawolf-list
