[Firestarter-user] Using firestarter on Debian -- suggested improvements
Brought to you by:
majix
From: rob s. <flo...@gm...> - 2012-03-10 16:43:01
|
Hello, Debian version:- Linux roblaptop 3.2.0-1-amd64 #1 SMP Fri Feb 17 05:17:36 UTC 2012 x86_64 GNU/Linux Firestarter version 1.0.3 Installing firestarter via synaptic puts the shell script in the rcS.d path and is run prior to any network being available and subsequently killed by network-manager. It should be in rc2.d, etc. paths and start AFTER all other network services. My suggestion would be to run it in two stages. In rcS.d run a script that sets up the kernel variables and loads iptables, and then after networking has been established, start the gui. Also, it is the isc-dhcp-client packages that provide DHCP and consequently the documentation needs updating. Where can I find documentation about the scripts and configuration files held in /etc/firestarter??? I can see that some things are updateable via the preferences tab, but how do you use user-post and user-pre scripts?? The current version of iptables supports the ulog daemon. I suggest that you use this instead of flooding syslog. That way dropped packets are all in the one log. My logs were being flooded with firestarter dropped packages at the rate of one per minute, so I cobbled together my own rules for iptables, using the ulog daemon, and now firestarter just reports the odd packet with a condition not being trapped by "my" rules. This is NOT ideal. Is it O.K. if I modify your scripts to use the ulog daemon??? Regards, Rob |