[luau] iptables minimal install

[MonMotha]

K, an image of the bootdisk will follow shortly behind this in a private 
email to you as an attachment.

Linux uses iptables (used to be ipchains, before that was ipfwadm, 
before that was supposedly an early port of ipfw) as a standard in all 
2.4 kernels.  All distros should be moving to iptables as they move to 
2.4.x kernels (which they should be doing by now).  ipfw, which many 
BSDs use, is a different userspace utility.  I'm not familiar with how 
BSD's implement their packet filters, but in linux the filter itself is 
kernel side, then iptables just tells the kernel what rules to set up. 
There is no reason that one couldn't write a version of ipfw to 
manipulate the linux 2.4 netfilter (though it has been designed around 
an iptables type interface).

Why not learn both?  I can't see any reason why knowing both could hurt 
you in any way.  iptables is what linux plans to use from now on, and I 
don't seen *BSD changing any time soon from ipfw.

BTW, you could run my script on this little floppy, but it's not 
included.  The root filesystem on the floppy is ramdisk based (so it can 
be compressed), and as such isn't saved when the system is shut down. 
To put my script on it you'll have to modify the root filesystem image 
(/rootfs.gz on the disk) by decompressing it, mounting it loopback (it's 
of type "minix"), modifying it, unmounting, recompressing, and putting 
back on the floppy.  If you need instructions on how to do the above, 
just ask; I'm sure many people on the LUAU list know how or if not, I 
can provide more detailed instructions.

Remember this disk is still in early stages of development (I'll 
eventually release it onto the internet once I get some form of remote 
access on it) and as such it might have bugs (don't be surprised if some 
things don't work right or segfault, or have linking errors, etc) and it 
is a bit tedious to work with, though it has most utils you'd expect on 
a basic console-only linux system, all crammed onto a floppy!

--MonMotha

Jon Reynolds wrote:
> Yes please, I have signed up on your mailing list and await my first
> foray into iptables. Also, are all distro's heading towards iptables as
> a standard? Or will freebsd'd ipfw be around for a long time to come?
> Would it be beneficial to learn both and is there another that I'm not
> aware of that I also should be familiar with?
> 
>  This may repost because I signed up the wrong email address and am
> awaiting moderator approval. Sorry.
> 
> Jon
> 
> On Sun, 2002-04-21 at 19:16, MonMotha wrote:
> 
>>I have a bootdisk I can send you an image of that has JUST what you need 
>>to make a firewall/router/bridge with firewall/etc out of.  This 
>>includes iptables and related utilities of course.
>>
>>No hard drive needed of course.  Unfortunately at this point 
>>configuration must be done from the console as there is no remote access 
>>to it.
>>
>>If you want it just ask, and I'll send it to you privately.
>>
>>--MonMotha
>>
>>Jon wrote:
>>
>>>What would be the minimal install for a box to run only iptables? I
>>>would like to build a firewall only box and would like to have as little
>>>as possible loaded on the machine. OS will be mandrake 8.2.
>>>
>>>Thnx,
>>>
>>>Jon
>>>
>>>
>>>
>>>_______________________________________________
>>>LUAU mailing list
>>>LUAU at videl.ics.hawaii.edu
>>>http://videl.ics.hawaii.edu/mailman/listinfo/luau
>>>
>>>
>>>
>>
>>_______________________________________________
>>LUAU mailing list
>>LUAU at videl.ics.hawaii.edu
>>http://videl.ics.hawaii.edu/mailman/listinfo/luau
>>
>>
> 
> 
> _______________________________________________
> LUAU mailing list
> LUAU at videl.ics.hawaii.edu
> http://videl.ics.hawaii.edu/mailman/listinfo/luau
> 
>