[nzlug] Firewall ruleset check...
Cliff Pratt
enkidu at cliffp.com
Wed May 14 19:28:37 NZST 2008
Hmm, who says that they don't? Stonewall certainly does and I used it
when I wrote this:
http://www.cliffp.com/ipaccounting/index.html
Cheers,
Cliff
Peter wrote:
> The primary reason is that ive added this whole ip accounting layer,
> which those tools dont do.
>
> But i have installed a couple of those packages and examined their
> resultant rulesets, and duly "merged" their rules into this ruleset,
> however adding more bits and pieces cumulatively doesnt make it better ;-)
>
>> I'd advise using something like stonewall, which, as many of these
>> tools are, is an iptables rules generator under the hood. Why
>> re-invent the wheel when you can use someone else's expertise.
>>
More information about the NZLUG
mailing list