[Shorewall-devel] "shorewall stop"
Francesca C. Smith
fsmith at ladylinux.com
Fri Jul 25 19:08:39 PDT 2003
Oh .. I use Shorewall on non port forwarded stand-alone stuff like DNS
servers and such .. Yes .. and port forwarding rules would not apply to
this scenario ... But I agree totally that its a "Keep It Simple" thing
On Fri, 2003-07-25 at 13:38, Tom Eastep wrote:
> On Fri, 2003-07-25 at 10:13, Francesca C. Smith wrote:
> > Yes .. Just a tcp 22 connection would suffice inbound from the internet
> > interface (But allowing certain other critical ports "Such as 80 for a
> > webserver" to continue operating would be even better) .. If thats even
> > easy or feasible .. Of course as Tom put it .. Its basically people
> > "Like Me" shooting themselves in the foot.
> The proposed solution will allow ports *to the firewall* to be opened
> individually; I don't want to consider doing things like port forwarding
> while the firewall is stopped.
Francesca C Smith
Lady Linux Internet Services
1801 Bolton Street # 1
Baltimore, MD 21217
More information about the Shorewall-devel