I've not looked at this *at all*, but one thought is to have a eucalyptus chain (or chains) that eucalyptus manages. It can add the chain on boot, and then add rules to the chain. Then it can manage the chain however it wants (even flush it). Once added, the chain is never removed from the BUILTIN chain, so then its location can be depended on across reboots and flushes, making firewalling outside of eucalyptus easier.
-- very hard to firewall eucalyptus securely https://bugs.launchpad.net/bugs/412664 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
