Shorewall users - Aug 2003 - Iptables and shorewall

Hi!

As I understand it, iptables is a firewall, and shorewall is an easy way to
configure it. Do I then need to have both services turned on as daemons to run
shorewall, or is it sufficient to run only shorewall? I looked in all the docs
(I think), but I can''t say I found out anything about this explicitely.

regards

Martin Andersson

On Thu, 2003-08-07 at 13:48, Martin Andersson wrote:
> As I understand it, iptables is a firewall, and shorewall is an easy way to
> configure it.
Iptables is the utility program for configuring Netfilter; Netfilter is
the packet filtering facility built into 2.4 and later Linux kernels.
Shorewall is a tool that uses iptables to configure Netfilter.

 Do I then need to have both services turned on as daemons
to
> run shorewall, or is it sufficient to run only shorewall?
a) Neither iptables nor Shorewall run as daemons although they are
defined as services to SysV init (in /etc/init.d).
b) You only need to start Shorewall.
c) Be sure to NOT start ipchains if it is available as a service on your
system.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net