Thread: help with static ip on lan
View Single Post

   
  #7 (permalink)  
Old 02-20-2008, 10:04 AM
Al
 
Posts: n/a
Default Re: help with static ip on lan

aaronl wrote:
> On Sun, 25 Sep 2005 12:43:46 +0200, Henrik Carlqvist wrote:
>
> > [ snip ]
[ snip ]
> but how does one stop the entire rc.firewall script without
> having to 'chmod -x rc.firewall' and reboot? Would it be
> 'start|stop|restart' code added to the rc.firewall script itself or to
> other script that calls it, rc.inet2 or something. Can I get the process
> from 'ps' somehow and 'kill' it that way? My firewall itself is pretty
> basic--something I grabbed off the internet many moons ago.

No answer according to yours.

But I can share that the fireHol firewall supports: start | stop |
status

(may can look at firewall script from thereof for ideas?)

And that I snitched a copy of fireHol's firewall script and also the
firehol.conf from my Debian box. Put said firewall script as
/etc/rc.d/rc.firewall and said .conf as /etc/firehol/firehol.conf on
Slackware 10.1 and then made a sym link in/of /usr/local/bin/firehol
which points to /etc/rc.d/rc.firewall

Thus when Slack boots can see on screen three informative lines to the
effect of fireHol is activating/activated/fully_activated

iptables -L

lists over 41 firewall rules. It appears to be reasonably stealthed
(not been broke into) cannot even ping at all either out or from
another box to this one.

firehol stop

as root totally gets rid of firewall where

iptables -L

lists no rules

firehol start

puts it back as before.

I've a yum repository on Slack box that I ocasional LAN only use. I
dis connect from internet (56K dialup), start Apache -- and . . .

Slack box is not even found at all on LAN until: firehol stop

then do yum repo business on LAN. then off Apache and firehol start

(I got it from your basic firewall script how to let in a local LAN
box) and I'll try it -- should be easier than my method so far.

I keep evolving in how I do things as I learn more and more.

fireHol (installed on Slackware rather than snitch a copy of stuff)
perhaps isn't a fit for Slackware? (google etc. for: "slackware
firehol" turns up nothing) (on a Deb box, just: apt-get install
firehol).

--
Al_Cu B C N U

Reply With Quote