On Tuesday 19 Feb 2013 16:20:20 James wrote: > Alon Bar-Lev <alonbl <at> gentoo.org> writes: > > Yes, I use it. > > Just enable all non experimental iptables settings at kernel including > > NAT. > > A while back, Mick posted on some updates to Arno's firewall work: > > net-firewall/arno-iptables-firewall > > I do not have the info handy, but you could google it > or maybe mick can post the link again.... > > I found Arno's approach very instructive for rule making, > research and as a reference. > > That said, firewalls and transparent bridges are moving forward > at the speed of light. Many new featuures in the kernel > as wells a different approaches to security. If you intend > to "hack" in this area, you need to get current and find a > compatible group for the latest information.... > > good hunting.....as it is very time consuming > > ymmv, > James
Here it is, I'm just trying the latest ~2.0.1d version as we speak, which also includes IPv6 rules: http://rocky.eld.leidenuniv.nl/joomla/index.php?option=com_content&view=article&id=45&Itemid=63 -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
