From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 15562 invoked from network); 7 Dec 2004 20:06:38 +0000 Received: from smtp.gentoo.org (156.56.111.197) by lists.gentoo.org with AES256-SHA encrypted SMTP; 7 Dec 2004 20:06:38 +0000 Received: from lists.gentoo.org ([156.56.111.196] helo=parrot.gentoo.org) by smtp.gentoo.org with esmtp (Exim 4.41) id 1Cblba-00079T-4G for arch-gentoo-user@lists.gentoo.org; Tue, 07 Dec 2004 20:06:38 +0000 Received: (qmail 634 invoked by uid 89); 7 Dec 2004 20:06:20 +0000 Mailing-List: contact gentoo-user-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail Reply-To: gentoo-user@lists.gentoo.org X-BeenThere: gentoo-user@gentoo.org Received: (qmail 5393 invoked from network); 7 Dec 2004 20:06:20 +0000 From: Luigi Pinna To: gentoo-user@lists.gentoo.org Date: Tue, 7 Dec 2004 21:06:11 +0100 User-Agent: KMail/1.7.1 References: <200412062012.23591.mailing-gentoo@sailorferris.com> <200412062305.36450.mailing-gentoo@sailorferris.com> <200412070024.55385.adriancapdefier@digifin.ro> In-Reply-To: <200412070024.55385.adriancapdefier@digifin.ro> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart4740739.tlMOGz2oGY"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200412072106.18299.mailing-gentoo@sailorferris.com> Subject: Re: [gentoo-user] P.S.Re: [gentoo-user] Brutal force attack X-Archives-Salt: 4f561ef8-92c3-4fd3-b5bc-db2a453e3afa X-Archives-Hash: 37d09641ffa0d01d044d3efecc1ff0ed --nextPart4740739.tlMOGz2oGY Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Alle 23:24, luned=EC 06 dicembre 2004, Adrian CAPDEFIER ha scritto: > I forgot to mention: > > this script just configures iptables so you need to: > # rc-update add terminus default > # rc-update add iptables default > > The main body of processing is done in /etc/init.d/terminus. If using > 2.6 kernel (which I prefer) you should only edit config files in > /etc/terminus and /etc/conf.d/terminus. Since AFAIK iptables is the > same for 2.4 and 2.6 you shouldn't have to alter anything (except for > module names as you pointed out), but if you have to then it will be > in /etc/init.d/terminus. Again if I can help you I will. > Gnite! > > Adi. Thanks a lot! I have almost my firewall configed! Now I have some question about the default policy: I cannot check or change the default policy (is it deny or drop?) and=20 I'm not sure about what happen when I estabilish a connection (I want=20 to use a rule that allows all connections starting from my computer. Can you explain me that? Thanks a lot Luigi =2D-=20 Public key GPG(0x073A0960) on http://keyserver.linux.it/ --nextPart4740739.tlMOGz2oGY Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQBBtg06+87qsQc6CWARAl6bAKCWPL0lO+nFamgyEuSMi4/IODKx3QCeLHOM 3DTZc9jG4cPWvzk+tXEQ2q8= =ML1R -----END PGP SIGNATURE----- --nextPart4740739.tlMOGz2oGY--