![](https://seccdn.libravatar.org/avatar/7aeddadc5c752bf9574e61e0750f1315.jpg?s=120&d=mm&r=g)
Sat, 28 Jul 2007, by lynn@steve-ss.com:
On Friday 27 July 2007 23:14, Theo v. Werkhoven wrote:
Fri, 27 Jul 2007, by wolfgang@rosenauer.org:
I plan to look at shorewall but thought I'd just ask here for recommendations.
Look no further.
That's worrying.
Simple firewall script(s)? How about etc/sysconfig/SuSEfirewall2? It's there and it just works. Yast edits it for you if you want pure simplicity.
Maybe it's just me, but I don't find the way SuSEFW2 does things simple at all. For a 'set and forget' network it probably works, but for a network with rules that are subject to change weekly, if not daily, this file is just too unreadable, because of all the comments lines that clutter the content. The small, less than 1 page, files in Shorewall have man-pages, so if I'm puzzled, I do '^Z; man shorewall-<..>; q; fg' and carry on.
Please tell me that this script is rubbish and I should look elsewhere. Or else please tell me what I'm missing.
It's not rubbish, but it does have serious limitations, at least, for me. Theo -- Theo v. Werkhoven Registered Linux user# 99872 http://counter.li.org ICBM 52 13 26N , 4 29 47E. + ICQ: 277217131 SUSE 10.2 + Jabber: muadib@jabber.xs4all.nl Kernel 2.6.20 + See headers for PGP/GPG info. Claimer: any email I receive will become my property. Disclaimers do not apply. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org