From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1Dt7ZZ-0007ky-De for garchives@archives.gentoo.org; Thu, 14 Jul 2005 17:32:33 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j6EHVB6l025014; Thu, 14 Jul 2005 17:31:11 GMT Received: from nproxy.gmail.com (nproxy.gmail.com [64.233.182.207]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j6EHVA2h029697 for ; Thu, 14 Jul 2005 17:31:10 GMT Received: by nproxy.gmail.com with SMTP id g2so119336nfe for ; Thu, 14 Jul 2005 10:31:17 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:references; b=FHn9E+t8jZxg+214dYTY85BbTE0cEbXi2pRfY8Kzz0SaU+O7C0e+xs1pQ9qz8ah2LFXgFWAv/xB+Thnt7pWnwjM9OOvbdFp4CeYLn290n78ZM+FHVTF+liw3B0E55PAKy1847zpnNmwUM6an1cR0tNzPBMwz0xY9QJsanG8Brdc= Received: by 10.48.4.10 with SMTP id 10mr82095nfd; Thu, 14 Jul 2005 10:31:17 -0700 (PDT) Received: by 10.48.240.6 with HTTP; Thu, 14 Jul 2005 10:31:17 -0700 (PDT) Message-ID: <8568e72d05071410313b9c4996@mail.gmail.com> Date: Thu, 14 Jul 2005 19:31:17 +0200 From: Sebastian Rodriguez To: gentoo-embedded@lists.gentoo.org Subject: Re: [gentoo-embedded] Using iptables alone without shorewall/firehol In-Reply-To: <42D69D30.1020101@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-embedded@gentoo.org Reply-to: gentoo-embedded@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_8886_21840143.1121362277749" References: <8568e72d050714061741d809ab@mail.gmail.com> <42D69BA1.9070203@gentoo.org> <8568e72d0507141008426be71f@mail.gmail.com> <42D69D30.1020101@gentoo.org> X-Archives-Salt: b574dd3f-d477-492b-9c77-20e3e1b9c0f4 X-Archives-Hash: 15e92f35286f23c580c5b9e7cbe81012 ------=_Part_8886_21840143.1121362277749 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline yes, thats exactly what I wanted to know ^^ I am going to install gnap on my wrap this week-end. On 7/14/05, Thierry Carrez wrote: >=20 > Sebastian Rodriguez wrote: > > yes it helps of course, the thing is: by default iptables doesnt start > > wit gnap? Oo as shorewall adn firehol are based on iptables I tought it > > would start at boot >=20 > USE_FW=3Dyes will add iptables + shorewall (or firehol) to the runlevel. >=20 > With USE_FW=3Dno you won't have any of them. >=20 > So if you so USE_FW=3Dno and START_SERVICES=3D"iptables" you will start > iptables without starting shorewall/firehol, which seems to be what you > want to do. >=20 > -- > Koon > -- > gentoo-embedded@gentoo.org mailing list >=20 >=20 --=20 S=E9bastien Rodriguez ------=_Part_8886_21840143.1121362277749 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline yes, thats exactly what I wanted to know ^^
I am going to install gnap on my wrap this week-end.

On 7/14/05, Thierry Carrez<= /b> <koon@gentoo.org> wrote:
Sebastian Rodrigu= ez wrote:
> yes it helps of course, the thing is: by default iptables= doesnt start
> wit gnap? Oo as shorewall adn firehol are based on iptables I toug= ht it
> would start at boot

USE_FW=3Dyes will add iptables + s= horewall (or firehol) to the runlevel.

With USE_FW=3Dno you won't ha= ve any of them.

So if you so USE_FW=3Dno and START_SERVICES=3D"iptables" = you will start
iptables without starting shorewall/firehol, which seems = to be what you
want to do.

--
Koon
--
gentoo-embedded@gentoo.org mailing list


<= br>
--
S=E9bastien Rodriguez ------=_Part_8886_21840143.1121362277749-- -- gentoo-embedded@gentoo.org mailing list