[Shorewall-newbies] Rules for more than one firewall?

Tom Eastep teastep at shorewall.net
Thu Mar 11 07:09:52 PST 2004


On Thursday 11 March 2004 06:41 am, Chhabria, Kavita - Apogent wrote:
> Hello all:
>
> I am working on setting up shorewall for more than one firewall within our
> organization.  Currently the configuration scripts for each of these
> firewalls have a lot in common and a few unique rules specific to a
> particular firewall.  Can someone please suggest some way/s to approach
> this situation.  How or rather where should we place the rules that are
> common across all the firewalls, so that they are contained in only one
> machine?

You can't do that. While Shorewall is being [re]started, access to remote 
systems is disabled.

> Any ideas? 

Place the common rules in a separate file that is replicated on all firewalls 
and INCLUDE that file in the firewall-specific rules files. See 
http://shorewall.net/configuration_file_basics.htm#INCLUDE.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list