From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by nuthatch.gentoo.org with esmtp (Exim 4.50)
	id 1EbQXo-00000y-EI
	for garchives@archives.gentoo.org; Sun, 13 Nov 2005 22:41:52 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.13.5/8.13.5) with SMTP id jADMe7XN019677;
	Sun, 13 Nov 2005 22:40:10 GMT
Received: from medousa.rus.uni-stuttgart.de (medousa.rus.uni-stuttgart.de [129.69.2.58])
	by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id jADMVX6o000613
	for <gentoo-user@lists.gentoo.org>; Sun, 13 Nov 2005 22:31:33 GMT
Received: from localhost (localhost [127.0.0.1])
	by medousa.rus.uni-stuttgart.de (Postfix) with ESMTP id 36D9A20C84B
	for <gentoo-user@lists.gentoo.org>; Sun, 13 Nov 2005 23:31:33 +0100 (CET)
Received: from medousa.rus.uni-stuttgart.de ([127.0.0.1])
 by localhost (medousa [127.0.0.1]) (amavisd-new, port 10024) with LMTP
 id 12768-01-40 for <gentoo-user@lists.gentoo.org>;
 Sun, 13 Nov 2005 23:31:31 +0100 (CET)
Received: from uni-stuttgart.de (mbox.rus.uni-stuttgart.de [129.69.1.9])
	by medousa.rus.uni-stuttgart.de (Postfix) with ESMTP id 5DEEA20C812
	for <gentoo-user@lists.gentoo.org>; Sun, 13 Nov 2005 23:31:31 +0100 (CET)
X-Virus-Scanned: by mbox.uni-stuttgart.de
Received: from [129.69.11.67] (account ruslucas@po2.uni-stuttgart.de HELO gentoo.rus.uni-stuttgart.de)
  by uni-stuttgart.de (CommuniGate Pro SMTP 4.2.8)
  with ESMTP-TLS id 29566468 for gentoo-user@lists.gentoo.org; Sun, 13 Nov 2005 23:31:31 +0100
Date: Sun, 13 Nov 2005 23:31:30 +0100 (CET)
From: Sascha Lucas <sascha.lucas@rus.uni-stuttgart.de>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Detecting local host firewall
In-Reply-To: <B86F8BCEEED5184CA225E0CC10FF611608B2B7@bdc03srv04.bdc.int>
Message-ID: <Pine.LNX.4.64.0511131846220.1947@tragbb.ehf.hav-fghggtneg.qr>
References: <B86F8BCEEED5184CA225E0CC10FF611608B2B7@bdc03srv04.bdc.int>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-Virus-Scanned: by amavisd-new at medousa.rus.uni-stuttgart.de
X-Spam-Status: No, hits=-4.399 tagged_above=-999 required=5 tests=ALL_TRUSTED,
 BAYES_00
X-Spam-Level: 
X-Archives-Salt: ff55a6ec-b5e4-4e85-bf1f-bb88c1e59a5d
X-Archives-Hash: 1a75c0bf4a717411857d1d40cbfcadad

> Is there a way to detect programmatically whether the local host has a
> firewall enabled?

as root: iptables -vnL

as user you may look at some files. They are indicators... interpret 
them. I don't know how to get the rule set.

$ test -d /proc/sys/net/ipv4/netfilter

get info from /proc/sys/net/ipv4/netfilter/* and /proc/net/ip_*

look for logs
$ dmesg | grep 'IN=.*OUT=.*SRC=.*DST=.*'

gentoo: specific
$ /etc/init.d/iptables status
$ test -s /var/lib/iptables/rules-save

Sascha.

-- 
gentoo-user@gentoo.org mailing list