As I mentioned last week, I've been working on an iptables-based firewall
script. It has reached the point where I believe it is ready for others
to try. Start at
http://seattlefirewall.dyndns.org/shorewall
where there are links to the documentation and to the downloads. I don't
have a .lrp yet but there's a .rpm as well as a tarball with a shell-based
installation script.
Shorewall takes a totally different approach from Seawall. It creates a
simple yet very flexible firewall framework with no policy built into the
script itself. It should be easy to adapt Shorewall to a wide range of
applications.
The documentation is a little skimpy yet but I'm working on that. Also,
since there is a notable lack of support yet for problem application
protocols in iptables, masquerading these applications is rather hit and
miss. For example, I won't be able to put this firewall to full use here
at my office until there is support for VPN masquerading under iptables.
I welcome comments and suggestions...
-Tom
--
Tom Eastep \ Alt Email: [EMAIL PROTECTED]
ICQ #60745924 \ Websites: http://seawall.sourceforge.net
[EMAIL PROTECTED] \ http://seattlefirewall.dyndns.org
Shoreline, Washington USA \___________________________________________
_______________________________________________
Leaf-devel mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-devel
