>>I am often heard on this list recommending Shorewall [...]
Hmm....Is shorewall a complement to iptables? I'm just curious.. I've gotten firestarter and the default lokkit..seems to be OK, I guess..
Shorewall is a set of shell scripts that write iptables rules based on your instructions. Once the rules are written, there is nothing else to do and there is nothing left running; the iptables code does the actual firewalling.
However, I notice that it's _Could_ only be configured for my LAN interface, what about my wifi interface? Do I _have_ to re-configure it each time I start the wifi interface? Right now, I'm not even sure if the firewall's up for my wifi (eth1)
Err... not sure I understand the question here. However, if it helps I have the following interfaces configured:
* ppp0 for dialing out to the Internet
* eth0 to the internal home LAN
* eth1 to my DMZ
* eth2 to my wifi access point
Rules can be created easily from any to any network or host as well as default policies for each. Very cool stuff, and very easy to implement.
-- Rodolfo J. Paiz rpaiz@xxxxxxxxxxxxxx
-- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
