I need to check with the author of Endoshield soon, as I went through the script earlier this year and added some additional options and built some ipchains compatable stuff. I checked in a CVS version which you should be able to get right now; this is at the usual sourceforge CVS repository. On Sun, Jul 21, 2002 at 12:40:24PM -0500, Gregory Nowak wrote: > My recommendation would be to drop ipchains and go for iptables. I use the endoshield script for my firewall, and found that it is very flexible, easy to set up, expandable, and works very well. > http://endoshield.sourceforge.net > Greg > > > On Sun, Jul 21, 2002 at 09:51:05AM -0400, Scott Howell wrote: > > > > Folks, > > > > If anyone has a Debian fireall box using two nics and some services > > running on it, please help!!!! > > > > I'm fairly certain my ipchains script is ok, but here's what happening. > > > > I booted the box and it has all the info my current Slackware > > server/firewall box has so in other words the ips are correct and the > > nics I've installed appear to be up and showing the correct ips as well. > > I simply can't get outside my own firewall. I tried flushing the rules, > > but not so sure that is the problem either. I will say that I am running > > a 2.4.18 kernel and added in the ipchains style packet filtering to work > > with my old ipchains script I copied from my current Slackware box. > > I can ping both interfaces, both internal and external. It would appear > > that perhaps packets aren't being forwarded, but I probably am missing > > something somewhere. > > Does Debian have a document on how to setup my type of configuration? I > > may simply again be missing some critical step. Slack and Debian are > > different enough that I've probably simply missed something and have > > forgotten. I've had a working box for so long that I've not had to mess > > with it much.<grin> > > > > tnx > > > > Btw, has anyone upgraded an older Slackware install to a new one? Did > > the upgrade go well, was it simple enough as far as packages working out > > without blowups etc.? Did you have to boot off new boot and roots > > floppies to do the install? > > > > I've heard getting the new Slackware is difficult and something about > > the floppies will not work? > > > > tnx > > > > > > _______________________________________________ > > Speakup mailing list > > Speakup at braille.uwo.ca > > http://speech.braille.uwo.ca/mailman/listinfo/speakup > > _______________________________________________ > Speakup mailing list > Speakup at braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup
