Hey Everyone...
Man.. this list has been pretty dead over the last few weeks eh?
Anyway.. I wanted to start a new thread..
IPCHAINS:
As some of you may or might not know, as of Linux kernel 2.1.102
and beyond.. IPFWADM is *dead*.
Its functionality has been replaced with IPCHAINS in the new kernels.
IPCHAINS gives Linux the ability to work with more detailed rulesets
and also offer Quality of Service (QoS) among other things. To
adjust the IP MASQ timeouts, we no longer use a patched IPFWADM or
even the new IPCHAIN tool. You need to use Juanjo Ciarlante
<[EMAIL PROTECTED]>'s IPMASQADM tool available
at:
http://juanjox.home.ml.org
Also.. in a few last posts on the group, there are new firewall
ruleset tools such as William Stearns's "Mason" (sorry.. I lost
the URL; email [EMAIL PROTECTED]) and J. Hardin's IPFWADM Dot
file generator (http://www.wolfenet.com/~jhardin/ipfwadm.html).
Though neither of these tools support IPCHAINS yet, both authors
have mentioned that they are working on it.
So... My question to you all.. how many of you are on 2.1.102+
and IPCHAINS now? Do you have any STRONG IPCHAIN ruleset configs
that you can post to the group? I hope to develop a strong ruleset
and integrate them and how to setup IP MASQ on a 2.1.x kernel
in my TrinityOS doc.
All comments, thoughts, etc are welcome!
ttyl..
--David
.----------------------------------------------------------------------------.
| David A. Ranch - Remote Access/Linux/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
