On Thursday 14 July 2005 03:00, Greg Wallace wrote:
Some third party firewalls allow you to code exceptions. For example, in my Norton firewall (Internet Worm Protection) for my XP machine I have specifically excluded my Linux machine from firewall protection. So, as long as the connection is coming from my Linux machine, it isn't blocked. Seems like something along these lines would be a nice feature for SuSE Firewall. That way, you could even exclude 192.168.1.1 thru, say, 192.168.1.102 from being firewalled.
I'm not entirely sure what you mean by this. You can specify in quite some detail which hosts are allowed to do what in SuSEfirewall2 (just not through the GUI, but the configuration file is very well documented) If in the above you mean you want to be able to block all machines from internet access (meaning from the inside to the outside) except a few trusted ones, then that is perfectly possible If by "not being firewalled" you mean connections from the outside to it are possible, then you can only ever do that for one machine in a NAT network. In a non-NAT network, it is possible to set up detailed rules in SuSEfirewall2 for just about any trust configuration of your hosts