![](https://seccdn.libravatar.org/avatar/2e846a486bb47d24595d540de089fe0d.jpg?s=120&d=mm&r=g)
"Reid, Rowan (GSP)" wrote:
Well, squid works ontop of ipchains. I ran out of time so I wans't really able to disable squid and try that. thanks for the tip though. What I would really love is to get my hands on the actual firewall script. I am thinking it may be worth my while to set up my own rules. there are a few thinggs that I would love to clarify though.
1.) Will I have to place my ISP DNS address in all my machines in order to resolve inet addresses, or will it automatically be resolved through pppd ?
In this sort of situation, I'd probably set up a caching name server. This is actually reasonably easy, and there's a great step by step quide at: http://www.linuxgazette.com/issue45/tag/11.html Then you can just point all the Win computers to get their DNS from the Linux box.
2.) does anyone have any sample ipchains rules, for a typical home network. my setup is as follows
1- SuSE6.3 Firewall machine which also acts as a Wins server and windows Domain Controllor, 3- windows based machines, for teh rest of the fam 1- Dual boot SuSE/Windows Design Station. which will be all Linux soon. ( just got CorelDraw9 beta ) :)
I could email you some privately... it just all depends on what you want to allow access to/from. I would just have a good look at /usr/doc/howto/en/IPCHAINS-HOWTO.gz.
** I have found the newbie help files (NHF) at http://www.linuxnewbie.org/ to ** be invaluable when you are not sure what to do. Not everything is covered, ** but what is there is explained so that we mere mortals can understand it!
Yes - they might be of help for some items but not necessarily firewalling with SuSE's firewall s/w. I've been in UNIX/Networks for at least 5 years and like hell I can get a SuSE firewall to do the job it's supposed to do without adequate documentation (which doesnt exist at the moment). I will say that LinuxNewbie.org is a lot more helpful than most of the LDP though
Hope that helps, Chris -- Apologies to everyone who has been waiting for replies off me over the past few weeks - I've been away from my computer. I'll try to catch up with my email over the coming days, but don't be surprised if you get a reply in a month's time... __ _ -o)/ / (_)__ __ ____ __ Chris Reeves /\\ /__/ / _ \/ // /\ \/ / ICQ# 22219005 _\_v __/_/_//_/\_,_/ /_/\_\ -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/