[Shorewall-users] Parameterized Samples Withdrawn
Tue, 9 Apr 2002 06:20:47 -0700 (Pacific Daylight Time)
On Tue, 9 Apr 2002, Paul Gear wrote:
> My AU$0.02: way to go, Tom - you tell 'em! :-)
I knew you'd be pleased :-)
> I agree that there is a need for sample configurations, but not for the
> *parameterized* samples previously provided. As Tom has stated, they give
> the wrong impression about using Shorewall. The parameter is simply a
> convenient place to put frequently used hosts and things. It should not be
> used to define all your trusted ports - that's what the rules file is for.
I agree entirely.
> Tom, what about publishing the unparameterized samples i previously sent
> you? I think it would be good if all the interfaces and rules were commented
> out by default, with explanations of what each one does if uncommented. I'd
> be happy to maintain and (partially) support them if people find them useful.
I'll dig them out and have a look.
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ email@example.com