Please note the new address for this forum : forum.excito.org. The old address redirects here but I don't know for how long. Thanks !
New user's registration have been closed due to high spamming and low trafic on this forum. Please contact forum admins directly if you need an account. Thanks !
The thing is that if you use firewall scripts such as Shorewall, it gets less important to understand iptables. You just add parameters that tell what you want and the script adds all the rules that will accomplish this.
Admittedly Shorewall may be somewhat big to run on a Bubba as it is more corporate targeted. In the end I'm also not using it myself, although I do use several of the resulting structures from using this script. In fact you could use the Shorewall howto to do the same: follow the chains to get an understanding of the mechanics and implement what you need.
As stated in the linked webpage, the trick is to isolate the loglines from the regular messages file and remember that these logs can grow like crazy; as in megabytes per second!
yes, I know a bit about Shorewall, I run it on a couple of other machines here at home, but I thought I should skip Shorewall on the Bubba and only use Bubba firewall, but I want logging, so, now I run Shorewall on my Bubba, log to a separate file, and it works like a charm.
