From: Andrew W. Donoho <awd@DDG.com> - 2005-11-07 18:10:52
I used the release of SveaSoft Talisman v1.1 for Linksys firewall/
wireless access point hardware to revise my basic firewall script for
FWBuilder and SveaSoft firmware. This implements a firewall that
allows a server to support web, email, ssh and DNS services to
external entities. It explicitly supports loopback address mapping
for sites that do not support split-DNS resolution. Because I also
run a multiprotocol household (Apple IP services and AppleTalk), I
had to take special care devising rules that enable these protocols
to transit the wireless/wired bridge port. That said, I do not
believe that there are any Apple specific characteristics to these
These rules are a refined and simplified set of my production rules.
They have been tested using Talisman v1.05 and FWBuilder v2.0.9. (Now
that I have more confidence in my firewall rules, it is time to move
up to Talisman v1.1.) Please feel free to query me about my choices.
You can download a copy from my personal web site: <http://
Andrew W. Donoho
awd@..., PGP Key ID: 0x81D0F250
+1 (512) 453-6652 (o), +1 (512) 750-7596 (m)
"To take no detours from the high road of reason and social
-- Marcus Aurelius
Get latest updates about Open Source Projects, Conferences and News.