[Firehol-support] Firehol Status?

firehol firehol firehol at gmail.com
Wed Dec 13 18:28:57 GMT 2006 

Hello, Everyone:

Thanks for all the feedback.

I really like the overall functionality and feel of firehol and would like
to use it in production at some point.

Looking at the cvs code, it looks like there's been a large handful of
changes since the last release, which was now almost two years ago.  It also
looks like there's known issues with UNROUTABLE_IPS and/or PRIVATE_IPS.

I understand that it takes effort and time to do a new release, but it looks
like a firehol needs one. Are there things that we in the community can do
to help with the next release? I'll be taking a look at the CVS version
today.

Also, I have a question (or perhaps a feature request). I've been naming my
firehol rules things like "dst-externalip", which results in iptables chains
with names like "out_dst-outside_dns_c8".  Is there some description of the
suffixes (the _c8) part in the chain name?

The feature request would be to replace the _c8 with a more meaningful name.

Best,
 jrobinson

On 12/11/06, Daniel Pittman <daniel at rimspace.net> wrote:
>
> Costa Tsaousis <costa at tsaousis.gr> writes:
> > firehol firehol wrote:
> >> Hello, Everyone:
> >>
> >> I've been looking at fireehol to configure the firewalls on my
> >> machines.
>
> [...]
>
> >> Do people use this firewall on real, working mail and DNS servers?
> >> Am I making some sort of mistake in my configs? I would love to get
> >> firehol working for my purposes.
> >
> > I use it in a data-center with several hundreds of linux machines,
> > including high performance DNS and mail servers.  I am sure lots of
> > other people are using it in a similar way without problems.
>
> Yes.  I use it in a large number of installations, service a wide range
> of protocols, including mail and DNS.  It works perfectly in these
> cases; we have no unexpected failures.
>
> The largest is a service that provides hosting -- web, email and DNS --
> and moves around 400KB/second of traffic, 24x7.  No problems there.
>
> Regards,
>         Daniel
> --
> Digital Infrastructure Solutions -- making IT simple, stable and secure
> Phone: 0401 155 707        email: contact at digital-infrastructure.com.au
>                  http://digital-infrastructure.com.au/
>
>
> -------------------------------------------------------------------------
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the chance to share
> your
> opinions on IT & business topics through brief surveys - and earn cash
> http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
> _______________________________________________
> Firehol-support mailing list
> Firehol-support at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/firehol-support
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.firehol.org/pipermail/firehol-support/attachments/20061213/3ccd3b94/attachment-0003.html>

More information about the Firehol-support mailing list