[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Firewall/IPChains w/ IPADDR Rule

Subject: RE: [cobalt-users] Firewall/IPChains w/ IPADDR Rule
From: "GPS" <gps@xxxxxxxxxxxxxx>
Date: Wed Feb 28 05:57:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

>Can anyone advise me with the following regarding the setup of a firewall
>rules with IPChains? 
>
>My rule-set is configured as:
>
>EXTERNAL_INTERFACE="eth0"		# Internet connected interface
>LOOPBACK_INTERFACE="lo"			# or your local naming convention
>IPADDR="any/0"				# your IP address
>ANYWHERE="any/0"			# match any IP address
>NAMESERVER_1="any/0"			# everyone must have at least one
>
>The information at
>http://www.linux-firewall-tools.com/linux/firewall/index.html says to
>configure the IPADDR as:
>
>|IPADDR = This is the IP address of your external interface. 
>|It's either a static IP address registered with InterNIC, 
>|or else a dynamically assigned |address from your ISP 
>|(usually via DHCP).
>
>But when I set the script (IPADDR) to the main IP for my server, it freezes
>the box. If I use the "any/0" entry, all is okay.
>
>My Question is what are the proper IPADDR setting(s) if not the main IP of the
>box (for optimum protection)? Should this value be set to "any/0" or is it
>possible to set this to just the IP's in *use* on the box?
>
>Thank you in advance for any insight to this dilemma.
>
>David


Have you seen PMFirewall at http://www.pmfirewall.com ?

It uses ipchains and configures it for you.

References:
- [cobalt-users] Firewall/IPChains w/ IPADDR Rule
  - From: David

Prev by Date: RE: [cobalt-users] Cobalt to provide compensation for server hack ?
Next by Date: Re: [cobalt-users] #! is not interpreted
Previous by thread: [cobalt-users] Firewall/IPChains w/ IPADDR Rule
Next by thread: RE: [cobalt-users] Enough is enough...

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index