Harry, Thatks! That is the best directive on where to start that I have been able to find and I have looked in quite a few. I have to go XMas shopping with the better half now but will be working on this tonight (CST). I'll holler for help if I don't get anywhere.\ Thanks again, Bob Harry Putnam wrote: > > Bob Hartung <[EMAIL PROTECTED]> writes: > > > Hi again, > > I have my RH 6.2 machine reinstalled, all scripts restored > > and all updates applied. I have what I think is a workable > > firewall script. Now, what I cannot figure out is where can > > I insert a line of code that will call my firewall script > > everytime pppd opens up a new connection. > > One technique that is normally used is to create an > /etc/ppp/ip-up.local script. The redhat setup will pass certain > variables to that script if it exists. This script will fire whenever > a connection is made. > > Variable $4 will contain the newly assigned address. This would be a > good place to put a call to a firewall I think. I am not on ppp > anymore so haven't done it myself. > > An /etc/ppp/ip-up.local script collects other useful information too. > I don't recall all the info that is passed to an ip-up.local script but > Here is a good way to find out. > > Create a script called ip-up.local in /etc/ppp. Make it executable of > course (chmod 755). > > cat /etc/ppp/ip-up.local > ^^^^^^^^^^^^^^^^^^^^^ > #!/bin/sh > ## $4 will be the major one here: > ## I don't recall how many have values but its between 1 and 8 I think. > echo -e "var \$1=<$1>\nvar \$2=<$2>\nvar \$3=<$3>\nvar \$4=<$4> > var \$5=<$5>\nvar \$6=<$6>\nvar \$7=<$7>\nvar \$8=<$8>" > > After putting this little script in place disconnect and reconnect via ppp > > You should find a file in ~/var.file that looks like: > > (some will be blank and just appear as `<>') > > Var 1=<somevalue> > var 2=<somevalue> > etc .. up to 8 > > Once you see what is available, change the script to print the current > address somewhere and a line in the firewall script to source that > information. > > cat ip-up.local > ^^^^^^^^^^^^^^ > echo $4 > /var/run/current.add > echo "Connection established at $4 - starting firewall" > /etc/rc.d/rc.firewall > > Line in firewall script to set external address: > > EXTERNAL_INTERFACE=`cat /var/run/current.add` <== Note those are > back ticks > > Its also a common practice to do something similar for things that > need to be done when a connection goes down, by creating a script > called /etc/ppp/ip-down.local > > Documentation: > Some of this is documented in a HOWTO. I don't recall its > name but do recall where I found it. It used to be one of the > `unmaintained HOWTOS' > > Do a search on google like `LDP HOWTO'. That will turn up some links > leading to a repository of the HOWTOS look for the ones under > `unmaintained'. Hopefully it is still included. > > I may turn up a link later today. > > _______________________________________________ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list -- Bob Hartung www.radiologygrouppc.com www.qchealthwatch.com _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
