On Tue, 2004-06-08 at 03:46, Thomas Kristensen wrote: > Is it possible to update iptables from a central server. I got 25 servers > using the same firewall and i need something to update them all from a > central server. > > Any ideas? > > Hilsen Thomas Kristensen Strange . . . I thought I saw this identical post a few days ago! Although it is still a few months away from release, ISCS (http://iscs.sourceforge.net) will help you do this. It will also manage any VPN and router configurations and, eventually, even the layer two configuration. It will do this just as easily if every firewall is different - the work is the same - describe the environment and ISCS automatically creates and distributes the list of rules to create that environment. I wish I could tell you it's here and ready for use but it's still in very active development. We're working on the last of the iptables modules as I write. fwbuilder (http://www.fwbuilder.org) is quite a good product more along the lines of traditional firewall GUI's and is available now. - John -- Open Source Development Corporation Financially sustainable open source development http://www.opensourcedevelopmentcorp.com
