* Raymond Leach wrote on Wed, Jan 22, 2003 at 10:55 +0200:
On Wed, 2003-01-22 at 10:47, Steffen Dettmer wrote:
* Harald Wallus wrote on Wed, Jan 22, 2003 at 09:21 +0100:
Another tools is fwbuilder, which I think it looks very nice.
Does anybody have experiences? It looks like this is a kind of rule compiler that generates some script. This is a nice way of doing I think, but it's complex to do right and flexible...
It basically generates an iptables script with the rules ... IMHO it is better and more flexible to do it yourself ...
Do you think SuSEFirewall is doing yourself?! I get confused when I tried it. I don't use it. But what this has to do with "but I configure remotely...", well, how else? My firewall script has as remote-safe feature, after "start" by shell you have to give an "ok" withhin 60 seconds, otherwise some fail safe SSH rules are inserted (it's important when having really strict firewalls :)).
at least then you'll understand what you are doing ...
With SuSEFirewall I don't think you'd be able to understand it, eihter...
But I have to configure firewalls remotly and thats the reason I prefere SuSEfirewal.
Could you explain that, please?
SuSEfirewall only has one config file and is therefore easy to configure?
A shell script which needs to be copied is also just one file, isn't it? And since I create it local I can cvs check in :) So I think this isn't a bad way... oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.