You can find this exact script at freshmeat.net ..do a search for ipchains-firewall The ipchains-firewall also has a mailing list.. You can probably find out info on it at nerdherd.net The address is firewall@lists.nerdherd.net and im guessing you can subscribe via majordomo@lists.nerdherd.net .. the name of the list is "firewall" At 07:39 PM 3/14/2000 -0600, KULISHdotCOM wrote:
Looking for someone to take a look at my ipchains script. I don't want to post it on the list as it is kind of long. A little background is in order.
I want to setup an ipchains firewall to do the following:
Deny everythind that is not explicitly allowed.
I have a server sitting behind it that will host pop3, smtp, www, and ftp so I will need to forward all these ports.
I want to allow everyone on the local network to ANYTHING out on the internet.
I want to log any denials and protect against IP spoofing (and anything else that might be dangerous).
If anyone is willing to help, I will send them my annotated script to take a look at. I do realize that some things are missing (probably the stuff I need help on).
I have read all the HOW-TOs that I can find but something isn't clicking.
Thanks for any HELP! CK
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com