[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding

Actually, it says:

     ## Set default policy
     $IPCHAINS -A output -j ACCEPT
     $IPCHAINS -A input -j DENY -l
     echo "             Done!"
     echo ""
     echo "External: $OUTERIF   $OUTERNET"
     echo "" ;;

Should it read (assuming 7 IPs):

     ## Set default policy
     $IPCHAINS -A output -j ACCEPT
     $IPCHAINS -A input -j DENY -l
     echo "             Done!"
     echo ""
     echo "External: $OUTERIF   $OUTERNET1"
     echo "External: $OUTERIF:0 $OUTERNET2"
     echo "External: $OUTERIF:1 $OUTERNET3"
     echo "External: $OUTERIF:2 $OUTERNET4"
     echo "External: $OUTERIF:3 $OUTERNET5"
     echo "External: $OUTERIF:4 $OUTERNET6"
     echo "External: $OUTERIF:5 $OUTERNET7"
     echo "" ;;

???

Sean 

-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald Waugh
Sent: Tuesday, April 23, 2002 12:43 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail
forwarding

On Tue, 23 Apr 2002, Sean Ward wrote:
> Those lines are there. And yes, I'm running multiple IP addresses.
> 
> Sean 
> 
> -----Original Message-----
> From: cobalt-security-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald
Waugh
> Sent: Tuesday, April 23, 2002 8:05 AM
> To: cobalt-security@xxxxxxxxxxxxxxx
> Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail
> forwarding
> 
> On Tue, 23 Apr 2002, Sean Ward wrote:
> > Didn't work. Bummer.
> > 

OK Do you have this in /etc/rc.d/init.d/pmfirewall

     ## Set default policy
     $IPCHAINS -A output -j ACCEPT
     $IPCHAINS -A input -j DENY

 
Gerald Waugh
http://www.frontstreetnetworks.com
Front Street Networks LLC - 203-785-0699
229 Front Street, Ste. #C, New Haven CT, 06513-3203
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security