Re: [suse-security] Suse Linux Firewall 2
Hi Jasper, sure there is, two possibilities I can think of: 1. make you own iptables-skript and run it by cron 2. make a copy of your /etc/rc.d/suse-firewall2.conf ( don't know the exact name, don't have it installed, use my own script) and then make a script like this (I'm not sure either, if rcsusefw is the right command, but it's probably something like that): morning: mv /etc/rc.d/suse-firewall2.conf /etc/rc.d/suse-firewall2.conf.night mv /etc/rc.d/suse-firewall2.conf.day /etc/rc.d/suse-firewall2.conf rcsusefw restart evening: mv /etc/rc.d/suse-firewall2.conf /etc/rc.d/suse-firewall2.conf.day mv /etc/rc.d/suse-firewall2.conf.night /etc/rc.d/suse-firewall2.conf rcsusefw restart I don't know, if this would be very elegant, but it should work :-). Best regards, Ralf Ronneburger Jasper Rohling wrote:
Hi.
I am running Suse 7.3 with Firewall 2. Now i want to disable portforwarding at scheduled times, to disable Microsoft Messenger from my Lan. I can'r let MSN run through squid because one of the client's is a iMac and the MSN client for the iMac won't allow the use of Generic Proxy.
So i am using portformarding for that. (IP_Forward). Is there a possibility to make a cron job for disabling MSN in working hours ?
Met vriendelijke groet, Kind regards,
Jasper Rohling Senior System Engineer
Business-line Infrastructure and Security CSS System Integration Ankersmidplein 2 1056 CK Zaandam
Office :+31 (0) 75 6539444 Mobile :+31 (0) 6 21281247 E-mail : j.rohling@css.nl website : http://www.css.nl
Ralf Ronneburger wrote:
Hi Jasper,
sure there is, two possibilities I can think of:
1. make you own iptables-skript and run it by cron 2. make a copy of your /etc/rc.d/suse-firewall2.conf ( don't know the exact name, don't have it installed, use my own script) and then make a script like this (I'm not sure either, if rcsusefw is the right command, but it's probably something like that):
morning:
mv /etc/rc.d/suse-firewall2.conf /etc/rc.d/suse-firewall2.conf.night mv /etc/rc.d/suse-firewall2.conf.day /etc/rc.d/suse-firewall2.conf rcsusefw restart
evening:
mv /etc/rc.d/suse-firewall2.conf /etc/rc.d/suse-firewall2.conf.day mv /etc/rc.d/suse-firewall2.conf.night /etc/rc.d/suse-firewall2.conf rcsusefw restart
I don't know, if this would be very elegant, but it should work :-).
Best regards,
Ralf Ronneburger
Hello, why don't you use the iptables-save and iptables-restore command? Regards Ruediger
participants (2)
-
ic_admin
-
Ralf Ronneburger