Gentoo Archives: gentoo-embedded

From: Sebastian Rodriguez <sniper.mdr@×××××.com>
To: gentoo-embedded@l.g.o
Subject: Re: [gentoo-embedded] Using iptables alone without shorewall/firehol
Date: Sat, 16 Jul 2005 09:47:48
Message-Id: 8568e72d0507160247348289c5@mail.gmail.com
In Reply to: Re: [gentoo-embedded] Using iptables alone without shorewall/firehol by Thierry Carrez
Ok, sorry about that, but I wasn't sure.
I am going to do it lie you said. Thank for the explanations

On 7/15/05, Thierry Carrez <koon@g.o> wrote:
> > Sebastian Rodriguez wrote: > > > Well, I am tryng the isntall, but what you said is wrong: > > > > "USE_FW Set to yes to have a firewall script run at startup. See FW_TYPE > > option. Note that you should overlay files in the etc/shorewall or > > etc/firehol directory to configure non-default options." > > So ok, I say no, but in FW_TYPE I cant chosse "no", so shorewall is > > going to run by default with defaul values, Thing I don't want > > So someone has an idea? > > Believe me. I wrote the damn thing. > > USE_FW decides if you run a firewall script at startup. FW_TYPE decides > which script you run (if USE_FW=yes). > > If you still don't believe me, look at the code : > > if [ "${USE_FW}" == "yes" ]; then > ln -snf "/etc/init.d/iptables" "/etc/runlevels/boot/iptables" > if [ "${FW_TYPE}" == "firehol" ]; then > ln -snf "/etc/init.d/firehol" "/etc/runlevels/default/firehol" > else > ln -snf "/etc/init.d/shorewall" "/etc/runlevels/default/shorewall" > fi > DONTDEPSCAN=0 > fi > > With USE_FW=no, you won't have iptables, you won't have shorewall, and > you won't have firehol. Whatever you put in FW_TYPE. > > -- > Thierry Carrez (Koon) > -- > gentoo-embedded@g.o mailing list > >
-- Sébastien Rodriguez