gentoo

Firehol configuration

Wed, 12/24/2008 - 00:45 — jim

To get firehol working I needed to add the netfilter modules or compile them into the kernel. I choose to compile them into the kernel since I was upgrading my kernel to 2.6.27.9

The next overall step is to setup your /etc/firehol/firehol.conf file.

Mine goes something like this:

version 5
lan_ips="192.168.1.0/24"

interface eth1 lan
policy reject
server "icmp ssh dhcp dns http" accept
client all accept

interface eth0 internet
server "http ssh" accept
client all accept

router home2internet inface eth1 outface eth0

Nameservers in dhcpd

Wed, 12/24/2008 - 00:33 — jim

dhcpd.conf in /etc/dhcp

for a typical lan setup you can use something like this

subnet 192.168.1.0 netmask 255.255.255.0 {
range 192.168.1.15 192.168.1.35;
option routers 192.168.1.1;
}

option domain-name-servers 208.67.222.222, 208.67.220.220;

jim's blog

firehole missing RESERVED_IPS file and missing get-iana.sh file

Tue, 12/23/2008 - 04:03 — jim

firehol RESERVED_IPS file creation

/usr/share/doc/firehol-1.273/scripts/get-iana.sh

jim's blog

sys-libs/ss is blocking e2fsprogs-libs

Tue, 12/16/2008 - 16:16 — jim

I fixed this on my machine at home but I no longer remember how I did it.

unmerge ss and com_err
then unmerge e2fsprogs

e2fsprogs-libs will then be able to be updated

should probably run a reverse dependancy check.

Jim's Stream

jlporter.com

User login

Firehol configuration

Nameservers in dhcpd

firehole missing RESERVED_IPS file and missing get-iana.sh file

sys-libs/ss is blocking e2fsprogs-libs

Navigation

National Security Status