Am making a suse 7 machine into a firewall... I have my firewall script.. but am not 100% sure where to put it. I read soemthing about /etc/rc.d/rc.firewall invoked from /etc/rc.d/rc.local but I'm not sure. Can anyone help me? :) thanks... Azrael _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
----- Original Message -----
Am making a suse 7 machine into a firewall... I have my firewall script.. but am not 100% sure where to put it.
That's a *very* silly thing to say!!! The Script should be saved as /etc/rc.d/rc.firewall. That appears to be the usual convention.
I read soemthing about /etc/rc.d/rc.firewall invoked from /etc/rc.d/rc.local but I'm not sure.
Exactly right. At the end of the /etc/rc.d/rc.local file add #Run the IP MASQ and firewall script /etc/rc.d/rc.firewall Make sure your script is executable. (chmod 700 etc) See http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html for lots of useful hints and tips. This e-mail is intended for the addressee shown. It contains information that is confidential and protected from disclosure. Any review, dissemination or use of this transmission or its contents by persons or unauthorized employees of the intended organisations is strictly prohibited. The contents of this email do not necessarily represent the views or policies of East Norfolk Sixth Form College, it's employees or students.
John McCabe wrote:
I read soemthing about /etc/rc.d/rc.firewall invoked from /etc/rc.d/rc.local but I'm not sure.
Exactly right. At the end of the /etc/rc.d/rc.local file add
#Run the IP MASQ and firewall script /etc/rc.d/rc.firewall
Make sure your script is executable. (chmod 700 etc)
You should probably also ensure that the firewall is in place before the network is brought up. -- Chris Howells E-Mail: chris.h@gmx.co.uk ICQ: 93699029 Web: http://www.chowells.uklinux.net
----- Original Message -----
You should probably also ensure that the firewall is in place before the network is brought up.
Duh! The firewall controls (usually) eth0 and eth1 so how do you get it to work without the network?? My script actually checks that networking is enabled before it runs. This e-mail is intended for the addressee shown. It contains information that is confidential and protected from disclosure. Any review, dissemination or use of this transmission or its contents by persons or unauthorized employees of the intended organisations is strictly prohibited. The contents of this email do not necessarily represent the views or policies of East Norfolk Sixth Form College, it's employees or students.
manager wrote:
Duh! The firewall controls (usually) eth0 and eth1 so how do you get it to work without the network?? My script actually checks that networking is enabled before it runs.
If I understand it, on my system (Debian) I have my iptables firewall script as a script in /etc/init.d/firewall, and this is linked to from /etc/rcS.d/ (that directory is the sysv init scripts that will be used *every* boot, unlike the rc5.d which will only be used when running run level 5, etc). Sorry I don't know how SuSE handles it, but you might be able to do a similair thing. HTH, -- Chris Howells E-Mail: chris.h@gmx.co.uk ICQ: 93699029 Web: http://www.chowells.uklinux.net
participants (4)
-
Azrael Angel Of Death -
Chris Howells -
John McCabe -
manager