My recommendation would be to drop ipchains and go for iptables. I use the endoshield script for my firewall, and found that it is very flexible, easy to set up, expandable, and works very well. http://endoshield.sourceforge.net Greg On Sun, Jul 21, 2002 at 09:51:05AM -0400, Scott Howell wrote: > > Folks, > > If anyone has a Debian fireall box using two nics and some services > running on it, please help!!!! > > I'm fairly certain my ipchains script is ok, but here's what happening. > > I booted the box and it has all the info my current Slackware > server/firewall box has so in other words the ips are correct and the > nics I've installed appear to be up and showing the correct ips as well. > I simply can't get outside my own firewall. I tried flushing the rules, > but not so sure that is the problem either. I will say that I am running > a 2.4.18 kernel and added in the ipchains style packet filtering to work > with my old ipchains script I copied from my current Slackware box. > I can ping both interfaces, both internal and external. It would appear > that perhaps packets aren't being forwarded, but I probably am missing > something somewhere. > Does Debian have a document on how to setup my type of configuration? I > may simply again be missing some critical step. Slack and Debian are > different enough that I've probably simply missed something and have > forgotten. I've had a working box for so long that I've not had to mess > with it much.<grin> > > tnx > > Btw, has anyone upgraded an older Slackware install to a new one? Did > the upgrade go well, was it simple enough as far as packages working out > without blowups etc.? Did you have to boot off new boot and roots > floppies to do the install? > > I've heard getting the new Slackware is difficult and something about > the floppies will not work? > > tnx > > > _______________________________________________ > Speakup mailing list > Speakup at braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup
