Mailinglist Archive: opensuse-security (685 mails)

< Previous Next >
Re: [suse-security] SuSEfirewall2 and pppoed dial on demand
  • From: Tilman Mueller-Gerbes <tmg@xxxxxxx>
  • Date: Thu, 7 Feb 2002 19:07:17 +0100
  • Message-id: <16Yswn-10d1cWC@xxxxxxxxxxxxxxxxxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

the standard ip-up script shipped with SuSE Linux only tests and
supports the SuSEfirewall, not SuSEfirewall2.

You have to edit it manually, attached is my diff relative to
the standard ip-up shipped with SuSE Linux 7.2:

Note that I have as well uncommented the personal firewall setup
(because it gave me a headache not using it ;)

You simply should change occurences of SuSEfirewall with
SuSEfirewall2 in /etc/ppp/ip-up .

Yes, I know: this is not done right, I should check for both
versions... I don't care ;)

cu, Tilman

Am Donnerstag, 7. Februar 2002 18:53 schrieb Robert Rottscholl:
> my problem is that everytime a connection is stoped and then
> restarted the firewall doesn't reload the configuration and
> sets up the rules with the new configuration(because I a
> dynip).
- --
Tilman Müller-Gerbes, Cologne/Germany
E: tmg@xxxxxxx, T: 0221/1206380, F: 0221/1206381
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8YsJiJcZx8ZxeDLURAr7tAJ9jxYg2R17PuPjSFVksyR7uV0AHugCfS5Aw
xQAk0OrB9O1ilNMlyZ36Uzg=
=E+om
-----END PGP SIGNATURE-----
--- /etc/ppp/ip-up Tue May 8 17:42:08 2001
+++ /tmp/ip-up Thu Feb 7 19:03:46 2002
@@ -64,8 +64,8 @@
# then set START_FW in /etc/rc.config to yes and it will be
# started here:
#
- test "$START_FW" = yes && /sbin/SuSEfirewall
- test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall
+ test "$START_FW2" = yes && /sbin/SuSEfirewall2
+ #test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall

#
# You may choose to use a default firewall script, configured for
@@ -113,8 +113,8 @@
# then set START_FW in /etc/rc.config to yes and it will be
# started here:
#
- test "$START_FW" = yes && /sbin/SuSEfirewall
- test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall
+ test "$START_FW2" = yes && /sbin/SuSEfirewall2
+ #test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall

# call ip-down.local if it exists and is executable:
test -x /etc/ppp/ip-down.local && /etc/ppp/ip-down.local "$@"
@@ -152,8 +152,8 @@
# then set START_FW in /etc/rc.config to yes and it will be
# started here:
#
- test "$START_FW" = yes && /sbin/SuSEfirewall
- test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall
+ test "$START_FW2" = yes && /sbin/SuSEfirewall2
+ #test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall

#
# You may choose to use a default firewall script, configured for
@@ -180,8 +180,8 @@
# then set START_FW in /etc/rc.config to yes and it will be
# started here:
#
- test "$START_FW" = yes && /sbin/SuSEfirewall
- test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall
+ test "$START_FW2" = yes && /sbin/SuSEfirewall2
+ #test -x /sbin/SuSEpersonal-firewall && . /sbin/SuSEpersonal-firewall

# call ip-down.local if it exists and is executable:
test -x /etc/ppp/ip-down.local && /etc/ppp/ip-down.local "$@"
< Previous Next >
References