[Shorewall-devel] "shorewall stop"

Francesca C. Smith fsmith at ladylinux.com
Fri Jul 25 19:08:39 PDT 2003


Oh .. I use Shorewall on non port forwarded stand-alone stuff like DNS
servers and such .. Yes .. and port forwarding rules would not apply to
this scenario ... But I agree totally that its a "Keep It Simple" thing

Francesca


On Fri, 2003-07-25 at 13:38, Tom Eastep wrote:
> On Fri, 2003-07-25 at 10:13, Francesca C. Smith wrote:
> 
> > 
> > 
> > Yes .. Just a tcp 22 connection would suffice inbound from the internet
> > interface (But allowing certain other critical ports "Such as 80 for a
> > webserver" to continue operating would be even better)  .. If thats even
> > easy or feasible .. Of course as Tom put it .. Its basically people
> > "Like Me" shooting themselves in the foot.
> 
> The proposed solution will allow ports *to the firewall* to be opened
> individually; I don't want to consider doing things like port forwarding
> while the firewall is stopped.
> 
> -Tom
-- 
Francesca C Smith
Lady Linux Internet Services
1801 Bolton Street # 1
Baltimore, MD 21217




More information about the Shorewall-devel mailing list