Randy Welch <[EMAIL PROTECTED]> writes: > Florin wrote: > > > > >this is hopefuly fixed already. You can now choose "-" in zone and add the > >8080 (edit the REDIRECT rule updated by the squid proxy and you'll have a > > better picture how to create such a rule; it's quite easy) as a port > > value. > >>>>The problem is that I can't do the 8080 in the GUI without adding fw: to > >>>>it. When I do it like that shorewall fails to restart. -randy > >>>> > > > >now you can do it ... > > > > > > > Thanks, I will try it out. > > >>sarg isn't running right.... It's getting a segmentation violation... > >> > > > > really ? I'll check again ... > > It seems to be generating everything but the index.html.
you can always try to run, by hand the /etc/cron.daily/0sarg file and check out if it changes anything ... if it does, then there must be a cron/msec issue .. > > > >>Another thing that would be > >>really nice is the ability to serve internal dns information for the local > >>network. > >> > > > >I'm sort of against this because it's a firewall after all .... but I'll > >note it on my TODO list ... if I have time I'll add it > > > I can understand that, I think somewhere in one of the setup screens there > is a message that implys that it is possible.... > > The one usage scenario that I think that MNF get's used as in SOHO/School > scenarios is that it's the primary focal point for network operations, > where there isn't a surrounding infrastructure for doing internal DNS etc. Ok, I might add a simple LAN management then .. in a week or two ... I still have a 50-steps TODO list ... For the time issue, it's a bit complicated ... The time and uid/gid netfilter patches apply only on the packets created on the firewall itself (the rules with fw as a source zone) so it cannot apply to rules coming from the lan/wan (DNAT) .. the only solution I see for the moment is to create a sort of a cron iptables management script, script that will use the allow/drop shorewall commands ... I'll dig again to have a better picture ... bye for now, -- Florin Grad http://www.mandrakesoft.com http://people.mandrakesoft.com/~florin/
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
