Tom, Thanks for your reply. I've been mulling this over since then.
I'm not sure what "pulled all documentation from the up-stream config files in favor of man pages" means, but when I type "man shorewall-rules" I get the helpful message "man: not found", so that's "a fail", in the current parlance. I understand that's somebody else's problem, but it's still broken. So the answer to my initial query appears to be that in order to configure a LEAF/Bering/Shorewall router firewall, one has to read all the man pages for the 30 or so configuration files, plus have a solid understanding of the particular version of ip filtering that is on that week's version of Linux. This is obviously designed as a deterrent against having too many users. :-) I want to set up a firewall, not take a semester course in networking. If I had more knowledge of Linux networking/ip filtering/etc. I'd take the web UI from pfSense or m0n0wall and graft it on to this mess and make a REAL appliance firewall. Tragically, what with the job and all, that's unlikely. I'd be USING pfSense or m0n0wall, but their FreeBSD kernel and drivers are flakey with my Alix2c3, so I'm left running an ancient Eigerstein/Dachstein on a P60 desktop machine. I have a network that the cheapo Linksys/Netgear consumer routers won't handle, so I guess I'm stuck with my ancient LRP until the hardware fails. Thanks for your time, Bill Dudley On 10/31/10, Tom Eastep <teas...@shorewall.net> wrote: > On 10/31/10 4:37 AM, KP Kirchdoerfer wrote: >> Am Sonntag, 31. Oktober 2010, 04:55:43 schrieb wfdudley: >>> Tom, >>> >>> Thanks for the quick reply. >>> >>> leaf-users: >>> >>> So that's it? Edit the /etc/shorewall/* files manually? >>> >>> OK. Wow. Negative progress on the UI front in the ten years since >>> my ancient version of LRP (Linux Router Project). >> >> shorewall IS the UI for Netfilter and well documented. >> (In fact the documentation in the configuration files has become that >> large, >> that it was pulled from the files to save space for embedded/small >> environments.) > > We have actually pulled all documentation from the up-stream config > files in favor of man pages. Don't know if the Bering-uClibc4 version of > Shorewall includes the man pages but they are available on the Shorewall > web site (and mirrors). Look under the Documentation link in the > left-hand frame. > > -Tom > -- > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > ------------------------------------------------------------------------------ The Next 800 Companies to Lead America's Growth: New Video Whitepaper David G. Thomson, author of the best-selling book "Blueprint to a Billion" shares his insights and actions to help propel your business during the next growth cycle. Listen Now! http://p.sf.net/sfu/SAP-dev2dev ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
