[pktfilter-users] Documentation and ruleset generation
Status: Inactive
Brought to you by:
jbm_sf
From: John C. <Joh...@ip...> - 2004-02-25 12:01:46
|
Hi all, First of all, my apologies if this is a FAQ. I've looked through the site, and couldn't find it, and the documentation that came with the s/w doesn't answer my question, so I'm hoping someone on this list can! Looking through the documentation that came with pktfilter 0.06-beta2, it mentions a rulebase to get you started, which seems straightforward enough, but I've noticed that several people have posted considerably more involved firewall config's over the past few weeks, and I'm guessing that they're using the IP Filter grammer, is this correct? Also, when testing in-house, we've noticed that you cannot set a firewall ruleset for an interface that isn't up yet, which makes it difficult for us to write a ruleset that covers Ethernet, wireless and dial up. I'm currently writing a perl script that will dynamically generate a config file from the list of interfaces and a rules template, but am I missing something? Is there an easier way to do this? Thanks all! John Constable Sysadmin IP Access Ltd |