[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Re: Portsentry, ipchains and pmfirewall
- Subject: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
- From: "Render-Vue" <sales@xxxxxxxxxxxxxx>
- Date: Wed, 23 Jan 2002 09:46:04 +1300
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Yah,
I see lots of posts regarding the "delayed start" of IPChain rules and
flushing to allow access.
We have several remote boxes and I mean remote :) so the 5 minute delay
would be the ideal solution. But we don't run GShield we have used the
methods listed in the archives by adding the following lines to the
/etc/rc.d folder
#Lets start IPChains firewall
sh /etc/rc.d/rc.firewall
So what's the recommendation on this set-up if the rules set gets screwed?
I know when testing new rules we comment the line out and test manually -
but there is the chance that after uncommenting the line and rebooting the
ruleset gets corrupt/screwed or you realise that you made a mistake :<
I'm I been parnoid (hee hee)
Regards
Chae