init of firewall
Anthony Christopher
sart057 at gmail.com
Fri Jul 31 21:12:58 UTC 2009
David Curtis wrote:
> On Wed, 29 Jul 2009 11:30:00 -0700
> Anthony Christopher <sart057 at gmail.com> wrote:
>
>
>> I am new to this mailing list.
>>
>> I have a laptop I use for surfing the internet and email that gets its IP
>> address from my ISP.
>> I am using ubuntu Intrepid with everything updated as of two days ago.
>> My iptables firewall script expects DNS to be available when it starts up.
>> Scheduling my firewall to init after NetworkManager fails.
>> My firewall script fails in such a way that internet connections fail
>> without the DNS information.
>> If I restart my firewall from a user terminal my firewall seems to configure
>> properly and I can surf the web and get my email.
>> After searching for possible solutions, I tried renaming my firewall script
>> to start with a 50 and putting it in /etc/NetworkManager/dispatcher.d.
>> This also failed. I would like to be able to init my firewall without a
>> manual restart.
>>
>>
>
> Anthony,
>
> I use arno-iptables-firewall from the repos, a script that can be managed/set up with debconf. Not suggesting that you use it, but if you install it, you can see how it sets itself up in /etc/init.d/. The configuration files are in /etc/arno-iptables-firewall/ and the script itself in /usr/sbin/.
>
> HTH,
> Dave
>
>
I decided to try your suggestion and discovered that its init script
gets put into rcS.d, which makes no sense to me, but it works. The
script that I was trying to use produces iptables that were just a
little bit more complicated than I could fully understand. The iptables
that result from the ¨arno¨ script seem about half again more
complicated. But this seems like a decent firewall, so I think I will
use it and call my problem solved, instead of continuing with my
original script.
Thanks to all,
Anthony
More information about the ubuntu-users
mailing list