* Running other commands / scritps
@ 2003-12-09 17:11 Michael Gale
2003-12-09 17:27 ` Ralf Spenneberg
0 siblings, 1 reply; 3+ messages in thread
From: Michael Gale @ 2003-12-09 17:11 UTC (permalink / raw)
To: netfilter
Hello,
Two questions:
1 - first -- I have a firewall implementation that requires 22 virtual IP's so I have a file for each IP to help in administering the firewall. Each IP has it owns user defined chain as well.
Anyways I have about 10-15 variables that each script needs -- I do not want to add all the variables to the top of every script all the time. Adding a new one is also a pain in the A$$.
Does anyone know how I could make a set of global variables that the firewall scripts can access when they start up.
I know it is kind of off topic :(
2. -- Is there a way to have iptables run a command or execute another script based on a rule :)
--
Michael Gale
Network Administrator
Utilitran Corporation
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Running other commands / scritps
2003-12-09 17:11 Running other commands / scritps Michael Gale
@ 2003-12-09 17:27 ` Ralf Spenneberg
2003-12-09 18:03 ` Michael Gale
0 siblings, 1 reply; 3+ messages in thread
From: Ralf Spenneberg @ 2003-12-09 17:27 UTC (permalink / raw)
To: Michael Gale; +Cc: Netfilter
Hi,
Am Die, 2003-12-09 um 18.11 schrieb Michael Gale:
> Does anyone know how I could make a set of global variables that the firewall scripts can access when they start up.
Put all your variables into one script: init_variables.
Source this script at the beginning of your scripts:
. /path-to/init_variables
> 2. -- Is there a way to have iptables run a command or execute another script based on a rule :)
No, not that I know of. You could generate a rule which would log an
event. This event could be parsed by swatch or logsurfer. They would
then start the command.
Cheers,
Ralf
--
Ralf Spenneberg
RHCE, RHCX
Book: VPN mit Linux
Book: Intrusion Detection für Linux Server http://www.spenneberg.com
IPsec-Howto http://www.ipsec-howto.org
Honeynet Project Mirror: http://honeynet.spenneberg.org
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Running other commands / scritps
2003-12-09 17:27 ` Ralf Spenneberg
@ 2003-12-09 18:03 ` Michael Gale
0 siblings, 0 replies; 3+ messages in thread
From: Michael Gale @ 2003-12-09 18:03 UTC (permalink / raw)
To: netfilter
Hello,
Thank you to all who reply to my post :)
I now have one file with all my variables :)
Michael
On 09 Dec 2003 18:27:11 +0100
Ralf Spenneberg <lists@spenneberg.org> wrote:
> Hi,
>
> Am Die, 2003-12-09 um 18.11 schrieb Michael Gale:
> > Does anyone know how I could make a set of global variables that the firewall scripts can access when they start up.
> Put all your variables into one script: init_variables.
> Source this script at the beginning of your scripts:
> . /path-to/init_variables
>
> > 2. -- Is there a way to have iptables run a command or execute another script based on a rule :)
> No, not that I know of. You could generate a rule which would log an
> event. This event could be parsed by swatch or logsurfer. They would
> then start the command.
>
> Cheers,
>
> Ralf
> --
> Ralf Spenneberg
> RHCE, RHCX
>
> Book: VPN mit Linux
> Book: Intrusion Detection für Linux Server http://www.spenneberg.com
> IPsec-Howto http://www.ipsec-howto.org
> Honeynet Project Mirror: http://honeynet.spenneberg.org
>
--
Michael Gale
Network Administrator
Utilitran Corporation
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2003-12-09 18:03 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-12-09 17:11 Running other commands / scritps Michael Gale
2003-12-09 17:27 ` Ralf Spenneberg
2003-12-09 18:03 ` Michael Gale
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox