>>So come up with specific questions you don't understand, and we'll all >>take a crack at solving them.
Okay.. Here's another one.. Maybe this will need me to install a "Real" firewall such as shorewall. (Downloaded but not looked into it yet)
No, this one won't.
Upon checking, I found out that eth0(LAN) is listed as _not_trusted_ (redhat-config-security - known as Lokkit I think). And There are _no_ options for including samba ports. After putting eth0 as trusted, Everything works right.
now, the thing here is I _do_ not want the LAN(eth0) to regard all traffic as trusted. (I think this is a fair request) As of right now, I would only like for ports 443(Https) 80(http) 22(SSH) 139(smb) to be open for business and other ports would be closed to the world.
Is there any way to do this using the "default" RH9 programs?
Yes. Set your security level to "medium" using the redhat-config-securitylevel program; on medium, you will be allowed to tell it that you want some ports or protocols allowed through a non-trusted interface like eth0.
Note that redhat-config-securitylevel used to have a bug wherein each time you ran it, it would NOT display your current settings. It did do what you want, but running the tool again would not detect and show the current settings but rather the buttons would look as though you had not run that tool before. I do not know if that bug has been fixed already, but just to save you some unnecessary grief of "why isn't it saving my settings?"
-- Rodolfo J. Paiz rpaiz@xxxxxxxxxxxxxx
-- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
