Jeff Vian wrote:
On Sun, 2005-03-13 at 20:16 -0500, Claude Jones wrote:I used the excellent Gandalf tutorial at Linux Exposed:
I'm reading up on how to set up some sort of trace to log what's going on as I write.
I hope someone who's an iptables guru can find the time to look through my script. I have the feeling this is a case of "The Purloined Letter". The answer is in front of my face but after 18 hours of fighting this, I'm blind ---
Just a thought. What did you use to create the firewall script?
As one who is not a guru on iptables I find fwbuilder a very good tool for what I need and it does the script building for me. As long as you can build the firewall rules with graphics objects it can convert it to a usable script for setting the rules on the server for you.
I have used it for both servers on the internet, and for firewall
machines as you are doing.
http://www.linuxexposed.com/Articles/Security/Linux-stateful-firewall-design.html
I got some further ideas from an earlier reply I got from Arthur Pembleton to this thread. It's just done in gedit.
