From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by nuthatch.gentoo.org with esmtp (Exim 4.43)
	id 1Dt7BI-0007FC-HD
	for garchives@archives.gentoo.org; Thu, 14 Jul 2005 17:07:28 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j6EH6axg007381;
	Thu, 14 Jul 2005 17:06:36 GMT
Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30])
	by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j6EH6Z7a021346
	for <gentoo-embedded@lists.gentoo.org>; Thu, 14 Jul 2005 17:06:36 GMT
Received: from car75-2-82-66-60-148.fbx.proxad.net ([82.66.60.148])
	by smtp.gentoo.org with esmtpa (Exim 4.43)
	id 1Dt7AX-0002Kn-VN
	for gentoo-embedded@lists.gentoo.org; Thu, 14 Jul 2005 17:06:42 +0000
Message-ID: <42D69BA1.9070203@gentoo.org>
Date: Thu, 14 Jul 2005 19:06:41 +0200
From: Thierry Carrez <koon@gentoo.org>
Organization: Gentoo Linux
User-Agent: Mozilla Thunderbird 1.0.2 (X11/20050326)
X-Accept-Language: en-us, en
Precedence: bulk
List-Post: <mailto:gentoo-embedded@lists.gentoo.org>
List-Help: <mailto:gentoo-embedded+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-embedded+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-embedded+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-embedded.gentoo.org>
X-BeenThere: gentoo-embedded@gentoo.org
Reply-to: gentoo-embedded@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-embedded@lists.gentoo.org
Subject: Re: [gentoo-embedded] Using iptables alone without shorewall/firehol
References: <8568e72d050714061741d809ab@mail.gmail.com>
In-Reply-To: <8568e72d050714061741d809ab@mail.gmail.com>
X-Enigmail-Version: 0.90.2.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Archives-Salt: d6e2eeea-450c-4e50-b739-8c93602e448a
X-Archives-Hash: 2d7519edd0f80a08d3c6dc4ff09c66bc

Sebastian Rodriguez wrote:
> 
> Hello,
> I am considering the option of using gnap, as my currently router / fw
> is a gentoo box. The "problem" is that actually I don't use shorewall,
> neither firehol. I just start my script at boot, and everything is
> great. I just want to know if we can unable shorewall and firehol and
> use iptables alone. If it is possible, how do we do it?

If you have USE_FW=no, GNAP won't start shorewall or firehol. You can
add extra startup init scripts using START_SERVICES (for example
START_SERVICES="iptables").

Hope this helps...

-- 
Koon
-- 
gentoo-embedded@gentoo.org mailing list