1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
arno-iptables-firewall for Debian
---------------------------------
This document only describes the differences between the upstream and the
Debian version. Please refer to the README file for the regular documentation.
The major difference with upstream version is the added debconf layer for
configuration management. Basic settings (external interfaces, open ports and
internet connections sharing (NAT)) can optionally be handled by debconf.
Use 'dpkg-reconfigure -plow arno-iptables-firewall' to reconfigure the
firewall at any time.
The package includes a log setup for rsyslog (the default sysklog daemon since
lenny). By default firewall-related messages will go into
/var/log/arno-iptables-firewall. The setup assumes messages to be logged with
the default kernel syslog level 'info' (see LOGLEVEL setting in firewall.conf).
If the loglevel is changed /etc/rsyslog.d/arno-iptables-firewall.conf has to be
modified accordingly. The corresponding logrotate setup at
/etc/logrotate.d/arno-iptables-firewall.conf might need to be customized
depending on the amount of generated log messages, but the default should be
appropriate for most desktop machines.
Since version 1.8 there is support for plugins. Plugins are installed in
/usr/share/arno-iptables-firewall/plugins. The corresponding plugin
configurations are placed into /etc/arno-iptables-firewall/plugins.
-- Michael Hanke <michael.hanke@gmail.com>, Fri, 25. Jan 2008 16:04:47 +0100
|