I've been monitoring discussions around the SuSE Firewall2 for some time. As a recent convert from RH 8, I've been confused from "day one" concerning how to configure this particular component. This is even after I've ready through the configuration file several times.
To be honest, I'm not even certain how I could bypass this to explicitly specify the IP table rules. However, discussions on this list (and notes within the configuration file) indicate that this and many other options are available. Is there a general "HOWTO" or guide concerning this tool? Even better, is there a cookbook or FAQ?
Thanks!
Tony
Anthony Brock wrote:
I've been monitoring discussions around the SuSE Firewall2 for some time. As a recent convert from RH 8, I've been confused from "day one" concerning how to configure this particular component. This is even after I've ready through the configuration file several times.
To be honest, I'm not even certain how I could bypass this to explicitly specify the IP table rules. However, discussions on this list (and notes within the configuration file) indicate that this and many other options are available. Is there a general "HOWTO" or guide concerning this tool? Even better, is there a cookbook or FAQ?
Thanks!
Tony
Why mess with susefirewall2? Whats the benefit? I just modify /etc/iptables.conf directly and run /etc/init.d/iptables restart. mine looks like this:
root@backup-db:~/mytop-1.4 # cat /etc/iptables.conf # Generated by iptables-save v1.2.7a on Tue Oct 8 18:00:46 2002 *filter :INPUT DROP [16844:3702154] :FORWARD DROP [0:0] :OUTPUT ACCEPT [304277:43605272] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -s x.x.x.0/255.255.254.0 -j ACCEPT -A INPUT -s X.X.X.0/255.255.254.0 -j ACCEPT -A INPUT -s 192.168.0.0/255.255.255.0 -j ACCEPT COMMIT # Completed on Tue Oct 8 18:00:46 2002 root@backup-db:~/mytop-1.4 #
Check out /etc/sysconfig/scripts/SuSEfirewall2-custom You can put iptables rules for the firewall to load directly in there.
Also Check out /usr/share/doc/packages/SuSEfirewall2/ There is a ton of documentation and example configurations in there.
On Thursday 29 April 2004 01:53 pm, Anthony Brock wrote:
I've been monitoring discussions around the SuSE Firewall2 for some time. As a recent convert from RH 8, I've been confused from "day one" concerning how to configure this particular component. This is even after I've ready through the configuration file several times.
To be honest, I'm not even certain how I could bypass this to explicitly specify the IP table rules. However, discussions on this list (and notes within the configuration file) indicate that this and many other options are available. Is there a general "HOWTO" or guide concerning this tool? Even better, is there a cookbook or FAQ?
Thanks!
Tony
Is there a general "HOWTO" or guide concerning this tool?
This is the unofficial SuSE FAQ by Togan Muftuoglu. There is an extra FAQ on SuSEfirewall as well! Go to the downloadsection - you get it here:
http://susefaq.sourceforge.net/
Philippe
* Philippe Vogel; filiaap@freenet.de on 29 Apr, 2004 wrote:
Is there a general "HOWTO" or guide concerning this tool?
This is the unofficial SuSE FAQ by Togan Muftuoglu. There is an extra FAQ on SuSEfirewall as well! Go to the downloadsection - you get it here:
And in near future it will be avalbale in Spanish also including an update for use with SuSE 9.1 as there are some new parameters.
-
Aaron Urbain -
Anthony Brock -
Jason Kurtz -
Philippe Vogel -
Togan Muftuoglu