Firehol configuration
To get firehol working I needed to add the netfilter modules or compile them into the kernel. I choose to compile them into the kernel since I was upgrading my kernel to 2.6.27.9
The next overall step is to setup your /etc/firehol/firehol.conf file.
Mine goes something like this:
version 5
lan_ips="192.168.1.0/24"
interface eth1 lan
policy reject
server "icmp ssh dhcp dns http" accept
client all accept
interface eth0 internet
server "http ssh" accept
client all accept
router home2internet inface eth1 outface eth0
masquerade
route all accept
router internet2home inface eth0 outface eth1
route all accept
I have my comcast or lan linked to comcast on eth0. On eth1 I have my switch to my new lan.
- jim's blog
- Login or register to post comments
Navigation
National Security Status
