Re: [S.u.S.E. Linux] firewall settings
![](https://seccdn.libravatar.org/avatar/fcd42f4c74de76b26104a99a4942736b.jpg?s=120&d=mm&r=g)
Bodo Bauer wrote:
You don't need to if you set up the firewall rules on a device and not on a address like the script you posted. The rules can be set up at any time, it doesn.t care if the interface is existung or not. If it exists the rules will take care of the traffic.
Great idea! ;)
Waht you can do is edit /etc/rc/config and set up the FW_* and MSQ_* variables like described in the manual, and set the FW_START/MSQ_START to 'yes' to make them active.
ok ... will investigate further ....and try to implement..
The firewall then will protect you at the time you are connected and you don't have to think about starting/stopping the firewall.
ah ... cool
BTW, to remove the rules, which are installed by your script, try this:
ipfwadm -f -I ipfwadm -f -O ipfwadm -f -F
yes - I have such a script to shut down / stop the firewalling ...
ppp 2.3.0 redials automatically just fine, and will accomplish 900f the time that which Jonathan's script is doing. Since I'm somewhat limited on time, I haven't figured out what signal it takes to "kick" it into redial, other than the fact that if the connection is terminated by the other end, it starts redialing nicely.
You can also use 'diald', which works perfect for me. (In fact, our office
Great - because I could never get diald to work. But that's been a year or so since I fiddled with it. Modem just sat there .... is there a finished version available from SuSE?I guess I can check the CDs ...
I will try to translate my Mini-Howto in englisch ASAP...
Ciao, BB
Yes - please do .. the kernel firewalling and its manipulation via ipfwadm does put one through a bit of a learning curve ... Thanks! -tks- -- To get out of this list, please send email to majordomo@suse.com with this text in its body: unsubscribe suse-linux-e
participants (1)
-
netd@fastrans.net