Ed.Greshko@greshko.com
2003-Jul-16 22:51 UTC
[Shorewall-users] [OT] Firewall Related Kernel Settings
FWIW... I found the following article that is related to building Linux based firewalls. http://www.securityfocus.com/infocus/1711 /bad attempt at humor In his spare time Tom could consider adding support for these in shorewall.conf. \bad attempt at humor Regards, Ed -- SARS - The only virus not spread by Outlook http://www.shorewall.net/ for all your firewall needs
On Wed, 2003-07-16 at 22:51, Ed.Greshko@greshko.com wrote:> FWIW... I found the following article that is related to building Linux > based firewalls. > > http://www.securityfocus.com/infocus/1711 > > /bad attempt at humor > In his spare time Tom could consider adding support for these in > shorewall.conf. > \bad attempt at humor >Actually, most of them would be in the /etc/shorewall/interfaces file. They are trivial to support in Shorewall but I''ve resisted because: a) There is no value added since any of them can be set today in your /etc/shorewall/init or /etc/shorewall/start file. b) There is a lot of work involved in documenting them and updating the released and sample config files (although the article that you refer to would help). c) Most of them have sensible defaults. d) The one''s that I think are most important already have Shorewall support (like rp_filter). -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net