From: Ralf Hemmann <ralf@core-dump.de>
To: netfilter@lists.samba.org
Subject: Re: Too scared....
Date: Tue, 11 Jun 2002 09:24:20 +0200 [thread overview]
Message-ID: <aeara9$8k8$2@main.gmane.org> (raw)
In-Reply-To: <E17HVTU-00062d-00@pooh.kjernsmo.net>
Hy
> I hope someone can take my paw and help me through the iptables setup,
> because I'm a bit scared of the possibility of locking myself out of my
> box...
I know what you mean and be shure - if you do not use a "roll back system"
you WILL lock you out of your server ;-))
Try to make your Firewall script like this:
!/bin/bash
# Deadmans Switch
# like in german railways.
# The driver has to press a
# button when its buzzing.
# If the driver dont push the button the
# Train stops
case "$1" in
start)
# your rules her
# iptables -t nat bla
# At the verry end of start put something like this:
echo "Are you dead ?
answer with Ctrl C
"
sleep 4
echo "2 more"
sleep 4
echo "1 to go"
sleep 4
echo "OK open firewall"
iptables -P INPUT ACCPET
iptables -P OUTPUT ACCPET
iptables -P FORWARD ACCPET
iptables -F
iptables -F -t nat
;;
stop )
# bla bla
;;
*)
echo "usage $0 Start | Stop "
esac
next prev parent reply other threads:[~2002-06-11 7:24 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-06-10 20:07 Too scared Kjetil Kjernsmo
2002-06-11 5:58 ` Tom Marshall
2002-06-11 7:24 ` Ralf Hemmann [this message]
2002-06-11 9:39 ` Tony Earnshaw
2002-06-11 11:25 ` RES: " Roberto Campos
2002-06-10 23:28 ` Frank Nijenhuis
2002-06-11 12:39 ` IP address to MAC address Sundaram Ramasamy
2002-06-11 12:53 ` Antony Stone
2002-06-11 20:38 ` Tony Earnshaw
2002-06-11 20:40 ` Antony Stone
2002-06-11 20:55 ` Ramin Alidousti
2002-06-11 21:09 ` Antony Stone
2002-06-11 21:27 ` Tom Eastep
2002-06-11 21:36 ` Antony Stone
2002-06-11 21:32 ` Adam D. Barratt
2002-06-11 21:45 ` rpjday
2002-06-11 21:58 ` Ramin Alidousti
2002-06-15 15:37 ` Antony Stone
2002-06-11 14:50 ` Too scared Jason Pappas
2002-06-12 15:05 ` Kjetil Kjernsmo
2002-06-12 1:37 ` Ralf Hemmann
2002-06-12 2:15 ` Update: Too scared.... Script Ralf Hemmann
2002-06-12 2:15 ` Ralf Hemmann
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='aeara9$8k8$2@main.gmane.org' \
--to=ralf@core-dump.de \
--cc=netfilter@lists.samba.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.