[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] RE: IPChains - shot myself in the foot
- Subject: [cobalt-security] RE: IPChains - shot myself in the foot
- From: "marcus miller" <cobalt_security_list@xxxxxxxxxxx>
- Date: Tue, 07 May 2002 12:53:45 +0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi all,
regards setting up ipchain rules and testing them i stumbled across this
little script that allows you to run the rules for x amount of seconds for
testing before turning them off.
---------------------------------------------------------------------
# **** script to test firewall rules - MJM: 2002 ****
# **** Add this to the end of the 'start' portion of the pmfirewall script
# **** Make sure you remove the ;; on the line above or script will not run
# disable after $TTF seconds.
# give TTF an integer value above 0 or this script is USELESS!
TTF=120
if test $TTF -gt 0
then
echo "Firewall rules running for $TTF seconds"
(sleep $TTF;
/etc/rc.d/init.d/pmfirewall stop \
) &
else
echo "firewall rules running for ever"
fi
echo " Done!"
echo ""
echo "" ;;
---------------------------------------------------------------------
Set TTF (time to flush) to something like 120 ( 2 minutes )
This gives us a bit of time to test the firewall, once we are sure it is
working set TTF to 0
and start the firewall
( if get 'syntax error near unexpected token 'TTF=120', have not deleted the
double semi colons from line above )
Hope this helps..
Regards
Marcus
_________________________________________________________________
MSN Photos is the easiest way to share and print your photos:
http://photos.msn.com/support/worldwide.aspx