#1 configuration errors handling

open
nobody
None
5
2013-02-19
2002-11-10
Anonymous
No

If I make a mistake in agt.rules such as:
input accept proto tcp port 1024- on eth0
agt -t won't tell it's wrong.
After running agt, polices will be set (ex. drop all input)
but ohter rules won't.
Imaginge now configuring firewall via SSH.
It's very frustrating to do hardware reboot each time it
happens.
Sure I can set all policies to accept when testing new
rules, but wouldn't it be better if agt when encoutering
an error set all to accept by default. Or make a special
rule that will always be applied such as:
input accept proto tcp port ssh from myhost
So that admin could always correct previous mistakes in
iptables rules.
Thank you.

Discussion

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks