Summary: | /etc/init.d/firewall (New Script) | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Stephen K. Benjamin <skbenja> |
Component: | New packages | Assignee: | Daniel Ahlberg (RETIRED) <aliz> |
Status: | RESOLVED WONTFIX | ||
Severity: | enhancement | CC: | crontraconstantium, skbenja |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://judecca.aculei.net/~blcknight/firewall.tar.gz | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | /home/blcknight/asdf/firewall.tar.gz |
Description
Stephen K. Benjamin
2003-08-23 14:44:45 UTC
Created attachment 16512 [details]
/home/blcknight/asdf/firewall.tar.gz
This only blocks certain incoming connections, it should be able to allow certain incoming ports and other outgoing ports e.g. ALLOW_OUT_TCP="ftp ssh http rsync" ALLOW_IN_TCP="ssh" ALLOW_OUT_UDP="domain" ALLOW_IN_UDP="" in conf.d/firewall. ${IPT} -P OUTPUT DROP should be added to init.d/firewall in function start also. There are a few options in init.d/firewall that aren't in conf.d/firewall. They should be added and have commented explanations. Is this meant to be just a script (maybe part of baselayout?) or a package? best integrated with iptables i think see above comments. |