From: Ralf Hemmann <ralf@core-dump.de>
To: netfilter@lists.samba.org
Subject: Re: Too scared....
Date: Tue, 11 Jun 2002 09:24:20 +0200 [thread overview]
Message-ID: <aeara9$8k8$2@main.gmane.org> (raw)
In-Reply-To: <E17HVTU-00062d-00@pooh.kjernsmo.net>
Hy
> I hope someone can take my paw and help me through the iptables setup,
> because I'm a bit scared of the possibility of locking myself out of my
> box...
I know what you mean and be shure - if you do not use a "roll back system"
you WILL lock you out of your server ;-))
Try to make your Firewall script like this:
!/bin/bash
# Deadmans Switch
# like in german railways.
# The driver has to press a
# button when its buzzing.
# If the driver dont push the button the
# Train stops
case "$1" in
start)
# your rules her
# iptables -t nat bla
# At the verry end of start put something like this:
echo "Are you dead ?
answer with Ctrl C
"
sleep 4
echo "2 more"
sleep 4
echo "1 to go"
sleep 4
echo "OK open firewall"
iptables -P INPUT ACCPET
iptables -P OUTPUT ACCPET
iptables -P FORWARD ACCPET
iptables -F
iptables -F -t nat
;;
stop )
# bla bla
;;
*)
echo "usage $0 Start | Stop "
esac
next prev parent reply other threads:[~2002-06-11 7:24 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-06-10 20:07 Too scared Kjetil Kjernsmo
2002-06-11 5:58 ` Tom Marshall
2002-06-11 7:24 ` Ralf Hemmann [this message]
2002-06-11 9:39 ` Tony Earnshaw
2002-06-11 11:25 ` RES: " Roberto Campos
2002-06-10 23:28 ` Frank Nijenhuis
2002-06-11 12:39 ` IP address to MAC address Sundaram Ramasamy
2002-06-11 12:53 ` Antony Stone
2002-06-11 20:38 ` Tony Earnshaw
2002-06-11 20:40 ` Antony Stone
2002-06-11 20:55 ` Ramin Alidousti
2002-06-11 21:09 ` Antony Stone
2002-06-11 21:27 ` Tom Eastep
2002-06-11 21:36 ` Antony Stone
2002-06-11 21:32 ` Adam D. Barratt
2002-06-11 21:45 ` rpjday
2002-06-11 21:58 ` Ramin Alidousti
2002-06-15 15:37 ` Antony Stone
2002-06-11 14:50 ` Too scared Jason Pappas
2002-06-12 15:05 ` Kjetil Kjernsmo
2002-06-12 1:37 ` Ralf Hemmann
2002-06-12 2:15 ` Update: Too scared.... Script Ralf Hemmann
2002-06-12 2:15 ` Ralf Hemmann
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='aeara9$8k8$2@main.gmane.org' \
--to=ralf@core-dump.de \
--cc=netfilter@lists.samba.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox