On Thursday 30 June 2005 04:23, Ruprecht Helms wrote:
> I've the problem that I need some rules for a temporary ppp0
> interface. This interface is only active then the admin has made a
> dial-up on the server and has activated a ppp-daemon.
>
> In the time the ppp0-Interface is up the connections should be able
> completely in both directions and through to clients. But this should
> only alowed for connections via ppp0.
If this is your only ppp+ interface it is easy. You can add your rules
to the existing firewall and leave them there.
If there are other ppp+ interfaces which should be more restricted, it
is only slightly more difficult. pppd(8) has a feature to run scripts
when an interface goes active and inactive, /etc/ppp/ip-{up,down}
respectively. Put your rules to open the interface in ip-up and to
close it in ip-down. (Some distributors use ip-{up,down}.local for
local additions.)
--
mail to this address is discarded unless "/dev/rob0"
or "not-spam" is in Subject: header
