[Shorewall-users] Parameterized Samples Withdrawn

Tom Eastep teastep@shorewall.net
Tue, 9 Apr 2002 06:20:47 -0700 (Pacific Daylight Time)

On Tue, 9 Apr 2002, Paul Gear wrote:

> My AU$0.02: way to go, Tom - you tell 'em!  :-)

I knew you'd be pleased :-)

> I agree that there is a need for sample configurations, but not for the
> *parameterized* samples previously provided.  As Tom has stated, they give
> the wrong impression about using Shorewall.  The parameter is simply a
> convenient place to put frequently used hosts and things.  It should not be
> used to define all your trusted ports - that's what the rules file is for.

I agree entirely.

> Tom, what about publishing the unparameterized samples i previously sent
> you?  I think it would be good if all the interfaces and rules were commented
> out by default, with explanations of what each one does if uncommented.  I'd
> be happy to maintain and (partially) support them if people find them useful.

I'll dig them out and have a look.

Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net