Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 35641

Summary: adsl-setup firewall creation uses ipchains
Product: Gentoo Release Media Reporter: Johnny <lonestar_92c>
Component: EverythingAssignee: Bob Johnson (RETIRED) <livewire>
Status: RESOLVED CANTFIX    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: x86   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Johnny 2003-12-11 23:22:02 UTC 
LiveCD v. 1.4
When running the Livecd and setting up adsl, if Masquerading is selected as the firewall type, there is a /etc/ppp/firewall-masq script created that uses ipchains. ipchains is not available on the CD, but iptables is.
This leaves the Livecd box totally open and without a firewall of any kind.
This may hold true to the standalone selection also, but hasn't been tried.
Comment 1 Bob Johnson (RETIRED) gentoo-dev 2004-01-20 15:56:52 UTC 
Using the livecds as bootable firewalls,etc may be supported in the
future but not at this time
Comment 2 Johnny 2004-01-20 23:47:48 UTC 
The idea wasn't to have a bootable firewall. 
It was to have a firewall while the system is being installed.
I *my* case, I needed ip fowarding so my network could get online while I installed Genttoo on the internet gateway.

To be a little more precise (as I should have in the 1st place), iptables is installed and available on the CD. adsl-setup gives you a choice of 3 firewallings, one of which is ip_forwarding, and creates or links to the /etc/net/firewall script that requires ipchains. Which isn't installed on the CD.
Either ipchains should be installed on the CD, or the firewall script should be changed to use iptables.