** Reply to message from Rob Unsworth <[EMAIL PROTECTED]> on Sun, 16 Sep
2001 10:22:00 -1000 (GMT+10)
> I recently installed RH 7.1 on a test box without a firewall, now that I
> want to set up a firewall, I can find plenty of info on iptable rulesets
> but nothing on the process of setup ie, where to put everything, what
> steps to take.
Since iptables has the ability to define rules for interfaces that are not yet
activated, an iptables script will theoretically be most effective if executed
before your network interfaces are initialized. Thus, IMHO, the best place for
this script is to place it in the initscripts before the network script (which
is S10network in RH initscripts). I have an S09firewall before the S10network.
Of course, you could live dangerously and put the script in rc.local and hope
that no script kiddie hits your box in the 4 or 5 seconds it takes to go from
initializing the network interfaces to running the rc.local which is always the
last to be run.
Jack Bowling
mailto: [EMAIL PROTECTED]
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
