On Mon, Aug 12, 2002 at 06:55:05PM -0600, Abjin M H wrote:
>Hi,
>
>Is it possible to run Bering cd and iptables without shorewall. If possible in which
>file should I write iptables/nat
>scripts.
>
if you put your firewall script in in /etc/init.d/
and add a line like this
RCDLINKS='0,K31 1,K31 2,S29 3,S29 4,S29 5,S29 6,K20'
the rc*.d symlinks will be generated automatically
same with your network script, here's how I control
the interfaces...
down () {
d=`ip -o link show | cut -d: -f2`
for i in $d ; do
ip addr flush $i
ip link set $i down
done
}
up () {
ip link set lo up
ip link set eth0 up
ip link set eth1 up
ip link set eth2 up
ip link set eth3 up
ip addr add 127.0.0.1/8 label lo dev lo
ip addr add 11.22.33.44/27 label eth0 dev eth0 # ISP
ip addr add 192.168.0.1/24 label eth1 dev eth1 # LAN
ip addr add 10.0.0.1/8 label eth2 dev eth2 # DMZ
ip addr add 10.0.0.2/8 label eth2:1 dev eth2 # an alias
ip route add 0/0 via 11.22.33.1 table main
}
case "$1" in
start)
down
up
;;
stop)
down
;;
restart)
down
up
;;
*)
echo "Usage: $0 {start|stop|restart}"
exit 1
esac
// George
--
GEORGE GEORGALIS, System Admin/Architect cell: 347-451-8229
Security Services, Web, Mail, mailto:[EMAIL PROTECTED]
File, Print, DB and DNS Servers. http://www.galis.org/george
-------------------------------------------------------
This sf.net email is sponsored by: Dice - The leading online job board
for high-tech professionals. Search and apply for tech jobs today!
http://seeker.dice.com/seeker.epl?rel_code=31
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
