Topic: Configuring ipchains

[Neil L]

This question has been posted several times by others, but there was never a response.

How does one configure ipchains in e-smith, and from where is the service initiated? (usually /etc/rc.d/...)  I've poked around in the files (/etc/e-smith/templates/etc/rc.d/init.d...) and it *looks* like a template, but how is this accessed?

Wouldn't it be great to have a "module" for this!
 :>)

NeilL

[Justin]

>>I've poked around in the files (/etc/e-smith/templates/etc/rc.d/init.d...) and it >>*looks* like a template, but how is this accessed?


So close...

/etc/e-smith/templates/etc/rc.d/init.d/masq


Justin

[Justin]

Sorry missed part of the question,

>>How does one configure ipchains in e-smith, and from where is the service initiated?

configure - /etc/e-smith/templates/etc/rc.d/init.d/masq/   -->each option is a file in here

initiated at - /etc/rc.d/rc7.d/S82masq

You will find the current working rules at - /etc/rc.d/init.d/masq

[Gordon Rowell]

Neil L wrote:
> [...]
> Wouldn't it be great to have a "module" for this!
>  :>)

If you look carefully at the files (rpm -q -f {filename}), you will see there are
quite a few modules involved. The structure allows modules to add ipchains
rules that they require (e.g. e-smith-openssh adds SSH rules).

If you look even more closely at the contents of the files, you will see that the
rules are tied to the enabling/disabling of each service and whether it is set to
public or private access. It's somewhat complex, but very flexible.

Gordon