[Firehol-support] Re: Appreciation

Daniel Pittman daniel at rimspace.net
Tue Jul 19 07:07:12 BST 2005


On 19 Jul 2005, Daniel L. Miller wrote:
> BTW - if I never said it before - thank you for firehol!  Just about 
> everything is awesome - the 'try' feature lets me test and modify my 
> firewall from home without getting locked out.
>
> The only exception would have to be the dependency on slooow Bash 
> compiles - but then you're rolling out that new C version any day now,
> right?

Just a hint:  unless you have dynamic behaviour in your Firehol
configuration, you don't actually *need* to run it every time you want
to apply a firewall.

You can easily use the standard iptables-{save,restore} scripts on a
Firehol generated firewall, and treat the Firehol script as a
"compiler", to apply (and then iptables-save) after you make a change to
the configuration file...

    Daniel

-- 
When the going gets weird, the weird turn pro.
        -- Hunter S. Thompson





More information about the Firehol-support mailing list