On Sun, Mar 30, 2008 at 11:06:46AM -0400, Brian J. Murrell wrote: > > You're then left with just > > local stuff on the firewall itself, which shouldn't really be an issue > > (since you shouldn't be running anything at that point). > > Anything running locally should not need (S)NAT anyway.
Well, I was thinking more about filtering rules. But the point in the boot process when shorewall starts should be before anything else that uses the network, aside from the fundamental things like dhcp and ping. People who start it later do so at their own risk. ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
