[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Re: Portsentry, ipchains and pmfirewall

Subject: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
From: "Render-Vue" <sales@xxxxxxxxxxxxxx>
Date: Wed, 23 Jan 2002 09:46:04 +1300
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Yah,

I see lots of posts regarding the "delayed start" of IPChain rules and
flushing to allow access.

We have several remote boxes and I mean remote :) so the 5 minute delay
would be the ideal solution. But we don't run GShield we have used the
methods listed in the archives by adding the following lines to the
/etc/rc.d  folder

#Lets start IPChains firewall
sh /etc/rc.d/rc.firewall

So what's the recommendation on this set-up if the rules set gets screwed?
I know when testing new rules we comment the line out and test manually -
but there is the chance that after uncommenting the line and rebooting the
ruleset gets corrupt/screwed or you realise that you made a mistake :<

I'm I been parnoid (hee hee)

Regards

Chae

Follow-Ups:
- Re: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
  - From: E.B. Dreger

Prev by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by Date: Re: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
Previous by thread: [cobalt-security] New version SSH for Qube3/XTR on pkg.nl.cobalt.com
Next by thread: Re: [cobalt-security] Re: Portsentry, ipchains and pmfirewall

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index