From: Bob Waskosky (bobski@netnet.net)
Date: Wed Jul 05 2000 - 21:20:31 PDT
Hi
I'm a newb to linux and firewalling. I'm trying to use pmfirewall as a personal firewall on a standalone box and a connection with an ISP. I have a few questions.
I configured mine to allow 127.0.0.1/32 full access and have pmfirewall start at boot time and on ppp connect. I answer No to all other questions. If I don't allow localhost access my winmodem driver won't load from S99local because pmfirewall is already started. This way it seems to work fine except I still have to restart pmfirewall to get my remote IP and rewrite the rules.
1. are there security implications to this?
2. will this make nmapping myself to check the firewall show false positives?
3. should I answer No to "allow any hosts full access" and load my modem driver before starting pmfirewall?
4. what's the best setup for this situation?
Thanks in advance.
Bob
--
I fish therefore I lie.
Bob Waskosky <bobski@netnet.net>
The Perl Zone - http://www.nobhead.com/perl/
-----------------------------------------------------
****************************************************************************
* To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall"
* in the message body to majordomo@pointman.org. Please direct other
* questions, comments, or problems to pmfirewall-owner@pointman.org.
*
* Need answers fast? Check the list archive located at:
* http://www.pointman.org/PMFirewall/list-archive/
*
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:35:18 PDT