Home | Content | Search | Navigation | Indexes
 

Mailinglist Archive: opensuse (3104 mails)

< Previous Next >
RE: [SLE] Firewall setup in 6.4
  • From: pevans@xxxxxxxxxx (Paul Evans)
  • Date: Thu, 13 Apr 2000 23:27:38 +0200
  • Message-id: <LPBBJMNBFCKJNJECNEFGAEGNCDAA.pevans@xxxxxxxxxx>



Thanks
It's working again, I've spent the last 2 days going round in circles on
this thing.
Still I'd like to eventually find out how one goes about setting up a
firewall.

Paul
-----Original Message-----
From: Bill Moseley [mailto:moseley@xxxxxxxx]
Sent: 13 April 2000 17:52
To: Paul Evans; Suse linux
Subject: Re: [SLE] Firewall setup in 6.4

At 04:58 PM 04/13/00 +0200, Paul Evans wrote:
>I have a linux box with a modem and a windows pc connected through ethernet
>to the linux box.

I have the same setup.

My advice is don't use the SuSE firewall setup. I spent a day trying to
get it to work and everytime I started the firewall I couldn't connect.

So in rc.config:
START_FW="no"

I'm not worried about a firewall yet, as I only have a dialup. If someone
wants to launch an attack at modem speeds, well, fine.

Anyway, in my wvdial.dod script I have this at the end of startpppd():

echo "WARNING: wvdial.dod replacing forward ipchain with only MASQ!"
/sbin/ipchains -F forward
/sbin/ipchains -A forward -j MASQ -i ppp0
/sbin/insmod ip_masq_ftp

That's it.

Then in /etc/ppp/ip-up I have

su moseley -c 'fetchmail -d 60 -M ppp0'

in the ppp0 start section to start reading my email.

Right before I get DSL I'll add to my ipchains.

I'm running a caching only DNS and using sendmail to send the mail. Dial
on demand works fine.

The next version of fetchmail will allow you to call a sleeping fetchmail
(sleeping because of the -M switch) and connect. That way I can have it
dial on deman from a cron job and leave fetchmail running all the time.

Bill Moseley
mailto:moseley@xxxxxxxx


--
To unsubscribe send e-mail to suse-linux-e-unsubscribe@xxxxxxxx
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx
Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/

--
To unsubscribe send e-mail to suse-linux-e-unsubscribe@xxxxxxxx
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx
Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/


< Previous Next >
Follow Ups
References