Re: [PATCH 0/3] iptables-edit: tool to apply iptables rules to iptables-save'ed statefiles

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Jan

Jan Engelhardt wrote:
> On Nov 5 2007 01:13, Peter Warasin wrote:
>> Most firewall scripts (for example fwbuilder, shorewall, firehole,
>> etc..) work always this way:
> fwbuilder uses (can use) iptables-save.

I see, cool! I missed that one the last time i tried.
Think i should give it another try.

At the other hand it's a compiler, which rebuilds from scratch, isn't it?.
Another advantage (can also be a disadvantage) is that iptables-edit
don't rebuild the entire firewall ruleset from scratch, so one can have
it's manually added iptables rules which then do not disappear after
next iptables-restore.

Furthermore option handling will be done by iptables extensions itself
and it's not necessary anymore to separately implement it within the
compiler. Could be an advantage.

peter
-- 
:: e n d i a n
:: open source - open minds

:: peter warasin
:: http://www.endian.com   :: peter@xxxxxxxxxx
begin:vcard
fn:Peter Warasin
n:;Peter Warasin
org:Endian GmbH/Srl
adr:;;Pillhof 47;Frangart/Frangarto;BZ;I-39010;Italien/Italia
email;internet:peter@xxxxxxxxxx
tel;work:+39 0471 631763
tel;fax:+39 0471 631764
x-mozilla-html:FALSE
url:http://www.endian.com
version:2.1
end:vcard


[Index of Archives]     [Netfitler Users]     [LARTC]     [Bugtraq]     [Yosemite Forum]

  Powered by Linux