Re: IP Chains

[ABrady <kcsmart kc rr com>]

On Tue, 14 Aug 2001 22:56:19 -0400 "Darren R. Weber"
<weberdr bellsouth net> imparted to us:

Oops. I just got out of a stupid sleep lab in which I didn't get any
(sleep, that is) and replied to the wrong question. I replied to what I
thought was asked, not what WAS asked.!

Ignore everything I said below what Darren said. Ignore it in the post
_before_ the one Darren posted, too!

> I don't know what ABrady is trying to tell you here but it sounds way
> off in 
> left field to me.  You don't need to do any of the things below for 
> "ipchains" on RH 7.1!  If you pay attention during the install it asks
> you 
> how you would like to set up your firewall. . .by default it uses
> ipchains. 
> The only time you have to worry about the modules and "iptables" is if
> you 
> prefer iptables to ipchains.  Most  people are fine with ipchains but
> if you 
> are really paranoid or want to start on the newer tools now then
> switch.  
> Otherwise, just run lsmod to see what is loaded. . .ipchains is
> probably 
> there.  They even supply you with a simple little tool to configure it
> with 
> after the install if you need to change: 
> /usr/sbin/lokkit  command line tool
> /usr/sbin/gnome-lokkit   if you prefer a gui
> If you need more complex rules you may need to edit the rules by hand.
>  They 
> are stored in:  /etc/sysconfig/ipchains
> Once you are done configuring it you can go to /etc/rc.d/init.d and
> run 
> ./ipchains restart
> Restart is really just a start since it clears the old rules on a
> start 
> anyway but the option is there.  You almost never need to reboot Linux
> to 
> turn something on.  Almost everything is in init.d if it's not you can
> usually kill it and start it manually.  Good luck.
> 
> -Darren
> 
> PS  This is not meant to insult ABrady in any way. . .just don't
> understand 
> this complicated advice below.
> 
> On Tuesday 14 August 2001 20:00, ABrady wrote:
> > On Tue, 14 Aug 2001 16:03:25 -0700 "Marcus - Webpagescanada.com"
> >
> > <marcus webpagescanada com> imparted to us:
> > > 	Is IP Chains installed on Red Hat Linux by default, is there a
> way of
> > > checking if it is on there. Anyone know of a good tutorial to
> install
> > > and
> > > adminster IP Chains? Is there anything better I could be using?
> Thanks
> > > in
> > > advance,
> >
> > RH>=7.1 yes, RH<=7.0 no
> >
> > To enable it on RH7.1 you need to rmmon ipchains and insmod
> ip_tables,
> > or run ntsysv (chkconfig if you prefer, or if you're into the
> zealotry
> > thing) and turn ipchains off/iptables on and reboot. Instead of
> reboot
> > (for those on servers and zealots) you can
> >
> > service ipchains stop; service iptables start
> >
> > AFTER the rmmod/insmod trick.
> >
> > Tutorials are a little thin and I can't think of one right off. But,
> I
> > downloaded Bastille (and a whole group of dependencies, including
> some
> > Mandrake stuff) and set it up. It seems to be doing an accetable job
> for
> > the time being. You can also run 'setup' and choose the firewall
> thing
> > for high or medium, then run 'ipchains -L' to see the syntax of the
> > commands and what is already set up.
> 
> -- 
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Darren R. Weber
> weberdr bellsouth net
> ICQ# 2849193
> 
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> 
> 
> 
> _______________________________________________
> Redhat-list mailing list
> Redhat-list redhat com
> https://listman.redhat.com/mailman/listinfo/redhat-list


-- 
...and that is how we know the Earth to be banana-shaped.