Differences between version 19 and predecessor to the previous major change of PerrysFirewallingScript.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 19 | Last edited on Tuesday, April 4, 2006 2:29:41 pm | by JamieCurtis | Revert |
| Older page: | version 18 | Last edited on Friday, February 25, 2005 4:00:41 pm | by AlastairPorter | Revert |
@@ -1,11 +1,30 @@
- cvs -d
:pserver:anonymous@cvs.sf.net:/cvsroot/wand checkout iptables
+To obtain the latest development copy get the following
:
-Or get the Debian packages from CraigBox (when Hoiho's repository is up, you'll know)
+<verbatim>
+svn co http://source.meta.net.nz/svn/linuxserver-firewall/trunk linuxserver-firewall
+</verbatim>
The firewall logs, and by default, syslog will put this on the screen. You can turn that off using dmesg(8). Specifically, you want to type dmesg -n 1. Or edit /etc/syslog.conf to put all the logging on another console. Firewalls shouldn't have monitors anyway. :)
+
+If you wish to build a debian package for the firewall (one may already exist in a Hoiho repository someday) do the following once you've checked it out as above:
+
+<verbatim>
+ cd linuxserver-firewall
+ svn co http://source.meta.net.nz/svn/linuxserver-firewall/debian/trunk debian
+</verbatim>
----
+!!!How to build and install the package
+
+Use a prebuild debian (or ubuntu) package if you can !
+
+If you can't, once you have got the latest development copy, just run
+<verbatim>
+ make install
+</verbatim>
+This will put things in the following places. By default the configuration lives in <tt>/usr/local/etc/linuxserver-firewall</tt>, the executable in <tt>/usr/local/sbin</tt> and rulsets live in <tt>/usr/local/share/linuxserver-firewall/ruleset.d</tt>
+
!!!How it works
The main engine is a script called "firewall". When you run it it sets up some chains, and runs each script in "hosts.d/*", then each script in "interfaces.d/*.if". The "ruleset.d/*" directory is used for customised rulesets, the standard scripts come with a whole heap. Theres also a support directory, but this is for internal use and shouldn't be needed.
