Firewalling 90% complete & tested, questions about writing tone

Kelly Anderson cbxbiker at comcast.net
Wed May 5 11:03:43 PDT 2004


> start)
>   if [ -z "$FIREWALL_SCRIPT" ]; then
>     permit_inbound from ANYWHERE to DMZNET for http
>   fi
>   apachectl start

Hmmm, it looks to me like the permit_inbound (and any other like 
functions) could write out the parameters that are passed to a state 
file which could be used in the event of address change.  That would 
certainly keep the main control localized and require no changes to 
package init scripts.

Kelly



More information about the hlfs-dev mailing list