Re: [Sheflug] Firewall config - for Ross.

[ross <nospam [at] ntlworld.com>]

On Thursday 17 May 2001 22:50, you wrote:
> There is a patch on the netfilter website, but the best way is to grab
> kernel-2.4.4 and build it.
>
> Yeap, when your box tries to hack into NASA without your permission,
> you know that your firewall wasn't working :-)
> Recompiling the kernel is easy enough once you figure it - just
> remember to keep the old kernel installed, until you know the new one
> boots and runs OK!

ok.. i'll give it another go! 

can you remind me how i use the old config file to configure the new kernel?

make xconfig -oldconfig   

??

>
>     ross> can i acespt all packets from
>     ross> ppp1? if so how?
>
> Erm - nasty!
>
> iptables -I INPUT -i ppp1 -j ACCEPT
> iptables -I FORWARD -i ppp1 -j ACCEPT
> iptables -I OUTPUT -o ppp1 -j ACCEPT
> iptables -I FORWARD -o ppp1 -j ACCEPT
>

that'll do for now:-)

> If you want a hand, or a lesson in iptables, or ipchains, drop me a
> line, tell me want you want to do, and I'll help out.
>

i've got a tutorial on iptables that i'm working through at the mo...... i'll 
finish that and the man pages before i bombard you with questions ;-)
thanks for the offer........ i will take you up on it if that's ok !

-- 
Thanks,
        Ross
               ross.h [at] ntlworld.com
____________________________________________________________________________
---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.