-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 jdd schreef:
M9. wrote:
I am talking about the SuSE-firewall... and the testing of it in 10.3 beta3..
me too. My router is an openSUSE box.
myconcern is to know how is your lan configured (what PC is used as gateway, what is the "internal" network, what the "external" (precise, with IP's, thanks)
and if possible, what are the differences between the default SUSEFirewall2 (/etc/sysconfig/scripts/SuSEfirewall2) script and the one you use
only to help you :-)
jdd
I am using a level-one wireless router as gateway, behind a tomson speedtouch adsl-modem. They are both configured to fit as one, and function without any error for many years, except for some wireless-card problems, and windows SP2 updates, which throw the network down every once in a while... PC's and Laptops in daily use, some pc's have wireless cards. tribal is the 64bits AMD 2800+, to test all Linux version i like, the ibm is the 32bits P4 testbox, (for the night-time), with windows for the accessability from all other windows-boxes, all production machines... terminator 192.168.1.9 (WLAN)(Fixed) ibm-sfn3 192.168.1.7 (LAN) (DHCP) IslandDreamer 192.168.1.4 (WLAN) (Fixed) tine-toshi 192.168.1.5 (WLAN) (Fixed) piii-sfn5 192.168.1.10 (WLAN) (Fixed) tribal-sfn2 192.168.1.8 (LAN) (DHCP) Networkdrive 192.168.1.2 (LAN) (Fixed) TOSP200 192.168.1.3 (WLAN) (DHCP) asus-sfn6 192.168.1.6 (WLAN) (Fixed) The printer is behind ibm-sfn2, configured as: smb://192.168.1.*/EPSONSty (exact name from MSXP) For this printer, an Epson Stylus C64 Photo edition, is no printserver available, so i have to hang it behind a box. In the start, tribal-sfn2 was the server, and main pc, but since the trouble with the firewall (and the scanner), which started with SuSE 10.0, several years ago, ibm carries this burdon... The MS boxes use an old and free Norton firewall:sygate About /etc/scripts/SuSEfirewall2, there are many files there, i do not know which one you want to see. I use the gui's in yast to configure the firewall, and that should be more than enough. IMHO should a firwall be configured once, and work in silence, protecting a pc or laptop against attack fro 'outside'. It should not block the trusted hosts, and block the untrusted ones. A warning should be displayed, with an option to grant or denie an attempt to enter the pc, with a discription of the host and the ip adress, so that one can decide to let pass once or forever, which does not mean that 'forever' can not be changed to denie. A realy good firewall can work with passwords, just as a server can. this is all the info i can think of, is from any use..
- -- Have a nice day, M9. Now, is the only time that exists. OS: Linux 2.6.22.5-10-default x86_64 Huidige gebruiker: monkey9@tribal-sfn2 Systeem: openSUSE 10.3 (X86-64) Beta3 KDE: 3.5.7 "release 58" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFG6tgyX5/X5X6LpDgRAlsNAKCxNPLa7Hf9IxwfE9cWrFMs3K0lAwCcC4va Iql8dvlk6FJo5xTQkZSscAc= =LUfA -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org