Marc's SuSEfirewall 4.4 together with 'kppp' ???
From my experiments in 1) I concluded that the firewall startup-scripts only work if a connection via, say, ppp was already established. So what about my dial-up connection. I boot my machine and during that process the firewall starts to build-up, BUT since I am not connected yet, since I only want to surf or read emails for a short time, the firewall isn't
Hi, thanks to the hints on this list it wasn't a problem at all to install the new firewall scripts from Marc. I still have 2 questions: 1) If I start the firewall as root with /sbin/SuSEfirewall everything works just fine if there is a ppp connection to my provider to which I dial-up from time to time. BUT, I like to use the program 'kppp' for dialing since it gives me good accounting information is easy to use and so on... So, I prefer this solution instead of wvdial. THE PROBLEM is that the firewall gets only started with the ip-up script which is executed by wvdial BUT NOT by kppp, since kppp manages everything itself. If I want to call SuSEfirewall as a normal user it doesn't work, of course... 2) properly installed... Maybe these questions are stupid, especially the latter (I am quite sure that I didn't understand the functionality of those init scripts), but I hope someone could help me! Should be a common problem though. Regards, Marko -- O _ O 0 0 ------------------m-\o/-m------------------------------------------ Dr. Marko K"aning Tel/Fax: +49-3834 554 442 / -3834 554 301 INP Greifswald email : kaening@inp-greifswald.de
Marko Kaening wrote:
THE PROBLEM is that the firewall gets only started with the ip-up script which is executed by wvdial BUT NOT by kppp, since kppp manages everything itself. If I want to call SuSEfirewall as a normal user it doesn't work, of course... aeh? tell me if i'm wrong but the ip-up script is called by the pppd? i dont know much about kppp but i think it's only a gui for pppd nor? If not maybe you can configure kppp to start the ip-up script after connect?
From my experiments in 1) I concluded that the firewall startup-scripts only work if a connection via, say, ppp was already established. So what about my dial-up connection. I boot my machine and during that process the firewall starts to build-up, BUT since I am not connected yet, since I only want to surf or read emails for a short time, the firewall isn't properly installed... sounds like a hostlookup problem for me? maybe you've entered some hostnames (mailserver from your isp?) and these canot resolved without a ppp connection.
just my 2cents -- Mit freundlichen Gruessen / best regards, Sven Michels Network Operating Center / Infrastructure ----------------------------------------- intraDAT AG Wilhelm Leuschner Strasse 7 u. 9-11 60329 Frankfurt / Germany Tel: +49 69 256 29 - 0 Fax: +49 69 256 29 - 256 http://www.intradat.com ----------------------------------------- Besuchen Sie uns vom 22.03.01-28.03.01 auf der CeBIT in Hannover, Halle 3 Stand E45 -----------------------------------------
Hi, finally I succeeded! Thanks to all responses.
aeh? tell me if i'm wrong but the ip-up script is called by the pppd? Yes, this was of course right, for some reason I got that wrong up to now... ;(
i dont know much about kppp but i think it's only a gui for pppd nor? If not maybe you can configure kppp to start the ip-up script after connect? Yes it does.
Well, everything works fine, BUT I had to delete all init scripts, since they only fail... Why do I need them?!? During ip-up and ip-down the firewall is installed and removed properly... Bye, Marko
Marko Kaening wrote:
Well, everything works fine, BUT I had to delete all init scripts, since they only fail... Why do I need them?!? During ip-up and ip-down the firewall is installed and removed properly... You've deleted all init scripts?! or the firewall initscripts?
littlebit confused, Sven -- Mit freundlichen Gruessen / best regards, Sven Michels Network Operating Center / Infrastructure ----------------------------------------- intraDAT AG Wilhelm Leuschner Strasse 7 u. 9-11 60329 Frankfurt / Germany Tel: +49 69 256 29 - 0 Fax: +49 69 256 29 - 256 http://www.intradat.com ----------------------------------------- Besuchen Sie uns vom 22.03.01-28.03.01 auf der CeBIT in Hannover, Halle 3 Stand E45 -----------------------------------------
Hi,
Well, everything works fine, BUT I had to delete all init scripts, since they only fail... Why do I need them?!? During ip-up and ip-down the firewall is installed and removed properly... You've deleted all init scripts?! or the firewall initscripts? Yes, I deleted all 3 init scripts. As far as I can see everything seems to work fine since then.
Maybe I understood something wrong, but during ip-up the SuSEfirewall is called and installed properly. If I do a 'status' I can see that it is up. After logout from the dial-up the FW is down again. I don't really see the point of these 3 init scripts, since only level 1 of 3 works without failure. I think this is connected with the fact that there is still no connection to the internet during the boot process (which is my intention, of course, since I want do that only when needed). So maybe I have missed something here, but as far as I can see the ip-up script takes care of everything alone... Marko
participants (2)
-
Marko Kaening
-
Sven Michels