Ok, now that I have squidGuard installed and properly configured, I had trouble with a small netfilter initscript I wrote. Basic script: if you're on the lan, input accept, otherwise, match state ESTABLISHED,RELATED and drop the rest. But when I run the script at boot time, my test client hangs at "Sending Request." After a great deal of hair-pulling, I discovered that I can fix it by restarting the firewall. I think there must be weird interprocess communications involved that need to get a chance to get going before squid can work. So I added the line -A INPUT -i lo -j ACCEPT and -A FORWARD -i lo -j ACCEPT And voila! Problem solved. So if you run into this with your custom netfilter, just remember to let the machine talk to (and hear from) its loopback interface. Which is probably a good idea anyhow.
Mike --- [This E-mail scanned for viruses by Declude Virus]
