"gclinux"--- You have gotten (at least) two replies to your request for help. I will add a third...regarding "firewall setup fails in SuSE 7.1." Consider (for now) "unplugging your linux box from the net." That reduces the need to have the firewall running, and you can learn how to use "shell" commands as well as either KDE or Gnome (I use KDE and like it, my son prefer Gnome for his "gui" interface...) With regard to your first question, I call it the log-in splash screen --- which is the first screen I see after the initial "kernel scripts" run. I assume you have already set-up an account for yourself and are not running as "root" If you haven't -- that is the first security measure you should take. The next is update your system using either "YOU" or "fou4s" to get the latest security patches for your distro. Further, even though you laid you some serious money for your Dlink 704p router & ADSL, you might want to consider 'upgrading" to SuSE 8.0 (which is what I got) or 8.1 as the mannuals get better with the latter series. (Note: at some point SuSE will stop supporting 7.1) Given for now you are running 7.1, besure to read Togan FAQ < TITLE="http://dinamizm.ath.cx/>" TARGET="_blank">http://dinamizm.ath.cx/>. He answers a lot of questions on on setting up firewall on 7.1 machines. If you follow Claus Weber's suggestions (in reply to Patrick), I have the following additional comments: Claus Weber <claus.weber@jambit.com> wrote:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

Hi,

...

so i guess theres no way around to going to /etc/sysconfig and editing a file called SuSEfirewall2 . one of the first 3 or 4 paragrafs deals with internal or external interfaces. you might try and put them both to eth0. hth

If you're behind a router, then maybe SuSEfirewall2 isn't the tool you need at all. Just use this, if your Linux-Box acts as a router. Look at "Personal Firewall", this should work better in your case.

If you decide to follow his suggestion, then "unload" "SuSEfirewall2" using YAST and install "Personal Firewall" I know, it is available for Suse 8.0 (e.g. Personal-firewall-1.2-48 RPM for noarch). I don't know about 7.1. http://www-isia.cma.fr/fr/presentation/materiel/pc_linux/base_logiciels/base... Other solutions are Bastile and Harden SuSE... but I suggest unplugging from the net and getting comfortable with linux and then setting up your "firewall box" using Linux and your own personal box to do what ever... Note: IMHO if you don't have two boxes, separated by a DMZ, then it is not a firewall. Togan explains that in his FAQ. HTH Gar PS NOTE: some protocols may fail if the personal-firewall is active. Among these are ftp (PORT mode), irc (DCC mode, CTCP), quake, real-audio, real-video and others that open secondary connections or that use UDP datagrams. ************************************************* Subject: [suse-security] firewall setup fails in suse7.1 Date: Tue, 3 Dec 2002 16:18 EST From: "gclinux" <gclinux@telusplanet.net> To: <suse-security@suse.com> hi list, I'm new to linux, upon bootup before the gui login (whats that called in linux? anyway), i get a message saying the firewall script needs to know the external internet interface. How do i fix this in simple terms. I don't have any luck figuring out what the manuals are trying to say. I have suse7.1 , behind a dlink 704p router & ADSL. Unfortunately I am still a gui moron, I have been through yast 2 many times and have been able to enable most of the items the manuals mention, but i still can't find how to tell the firewall script the external internet interface. tyi __________________________________________________________________ The NEW Netscape 7.0 browser is now available. Upgrade now! http://channels.netscape.com/ns/browsers/download.jsp Get your own FREE, personal Netscape Mail account today at http://webmail.netscape.com/