[OE-core] [PATCH 3/5] iptables: add default rules

2014-06-22 Thread Kai Kang
Add default rule files for iptable/ip6tables from RHEL 5.8. Signed-off-by: Kai Kang --- .../iptables/iptables/ip6tables.rules | 31 ++ .../iptables/iptables/iptables.rules | 30 + 2 files changed, 61 insertions(+) create mode 10

Re: [OE-core] [PATCH 3/5] iptables: add default rules

2014-06-23 Thread Burton, Ross
On 23 June 2014 03:32, Kai Kang wrote: > +# Firewall configuration written by system-config-securitylevel > +# Manual customization of this file is not recommended. That's just going to be confusing to anyone who doesn't know that this file was copied directly from RedHat. Also, is it sensible t

Re: [OE-core] [PATCH 3/5] iptables: add default rules

2014-06-23 Thread Kang Kai
On 2014年06月23日 18:42, Burton, Ross wrote: On 23 June 2014 03:32, Kai Kang wrote: +# Firewall configuration written by system-config-securitylevel +# Manual customization of this file is not recommended. That's just going to be confusing to anyone who doesn't know that this file was copied dire

Re: [OE-core] [PATCH 3/5] iptables: add default rules

2014-06-23 Thread Anders Darander
* Kang Kai [140624 03:40]: > On 2014年06月23日 18:42, Burton, Ross wrote: > > On 23 June 2014 03:32, Kai Kang wrote: > > Also, is it sensible to ship a static firewall configuration? The one > > thing we're not is one-size-fits-all. > I just want users could start iptables without any professiona

Re: [OE-core] [PATCH 3/5] iptables: add default rules

2014-06-24 Thread Kang Kai
On 2014年06月24日 14:06, Anders Darander wrote: * Kang Kai [140624 03:40]: On 2014年06月23日 18:42, Burton, Ross wrote: On 23 June 2014 03:32, Kai Kang wrote: Also, is it sensible to ship a static firewall configuration? The one thing we're not is one-size-fits-all. I just want users could start