On Thursday 12 February 2004 02:17 pm, David Cary Hart wrote: > On Thu, 2004-02-12 at 16:56, Tom Eastep wrote: > > My opinion is far from unbiased but here goes. Shorewall is a high-level > > tool for configuring netfilter. It uses the iptables utility to do so. As > > a result, it cannot offer any more protection than the iptables utility > > used alone can provide. > > Correct me if I am wrong but Shorewall only works properly on a > dedicated box. In other words, if you are running netfilter on the same > machine as a server then Shorewall doesn't work properly. You are incorrect. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@xxxxxxxxxxxxx
