From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1E9AfC-00064S-Jh for garchives@archives.gentoo.org; Sun, 28 Aug 2005 00:04:43 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j7S01XY6015432; Sun, 28 Aug 2005 00:01:33 GMT Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.204]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j7RNvFWU011215 for ; Sat, 27 Aug 2005 23:57:16 GMT Received: by rproxy.gmail.com with SMTP id a41so864852rng for ; Sat, 27 Aug 2005 16:58:52 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VEqHSKKknHueY529UwdY8Je09NTA3yUylWhuy2baF4MVMpTA/0IAucKPH+0ugJPlEH/acCfm17TCwor0LuqdeW9H5ykrY1MGJz1C1bi21lYlEJ7U4o4nCmRl/rrlRLZNDH4wH9wge/hc35GR78nZLRabGm3HvEyHTwak0/TYvEI= Received: by 10.38.9.40 with SMTP id 40mr101350rni; Sat, 27 Aug 2005 16:58:52 -0700 (PDT) Received: by 10.38.73.54 with HTTP; Sat, 27 Aug 2005 16:58:49 -0700 (PDT) Message-ID: <642958cc05082716585a3bc82e@mail.gmail.com> Date: Sat, 27 Aug 2005 19:58:52 -0400 From: Mark Shields To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: A Gentoo Firewall howto? In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Disposition: inline References: <20050827122313.18364eba.monotux@gmail.com> <1125141178.5526.44.camel@rattus.localdomain> <642958cc050827061115947c93@mail.gmail.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by robin.gentoo.org id j7RNvFWU011215 X-Archives-Salt: 0dc0ec44-c56a-4936-8dde-6c2951ce0d48 X-Archives-Hash: 12134e00540e5a443d3043d82fb09609 I used this setup on a multi-purpose server I built from parts. It also functions as a ftp, http, sftp, ssh, vnc, samba server. Hey, have to put it to work somehow. On 8/27/05, James wrote: > Mark Shields gmail.com> writes: > > > I know you mentioned easing the pain, but good old iptables worked for > > me - along with http://www.gentoo.org/doc/en/home-router-howto.xml - > > after using that initial setup and becoming somewhat familiar with > > iptables, I was able to modify a script to suit my needs, a 49-line > > file that gets what I need done. > > Well, I was going to follow this howto and try to figure out how to > add the dmz later. Since it's a firewall, I decided to use: > http://open-systems.ufl.edu/mirrors/gentoo/experimental/x86/hardened/livecd > > Problem is it gives many options. I'm going to select: > grsec-noX > and then try to use this web page on home-router. Maybe when some folks > 'get lucky' we can spin a version of this page that address a > DMZ with web servers and dns servers, call it the home-office version. > > I'm sure I'll be whinning on the list, when I do something stupid... > > > James > > -- > gentoo-user@gentoo.org mailing list > > -- - Mark Shields -- gentoo-user@gentoo.org mailing list