# # Configuration for panicfw # $Id: config.bridge,v 1.1.1.1 2004/08/31 13:33:28 thomasez Exp $ # # Fill in the blanks. # # For configuring of modules to use, # this includes the network interfaces: /modules.lst # For configuring extra network interfaces and firewall rules # you may use network.ini # # Physical device layout: # # In the files /etc/outside.info and /etc/inside.info you will see # OUTSIDDE_DEVICE and INSIDE_DEVICE, those are the logical devices used by # firewall.init and friends.. # # If you have only one network card you can set INSIDE_DEV to eth0:0 # and it will use ip aliasing to make it all work. # OUTSIDE_DEV=eth0 INSIDE_DEV=eth1 # # List of ports you will open up from the outside and inwards on ALL # Machines. All ports, except 135 to 139 and 445 (all related to NetBIOS) # are open outwards. # ALLOW_INCOMING=22 # # Password can be created in many ways. Youhave two (three) options, # DES_PASSWORD will accept a crypted strong # PASSWORD will accept a strong (the specific root password). # This will give you "ffw" as login password. # DES_PASSWORD=nCLm5JgCK0G5U PASSWORD= # # Done! Your floppyfw should already work by now. # Save this file and give it a shot ! # #============================================================================= #----------------------------------------------------------------------------- # # Defaults and switches: # HOSTNAME=floppyfw DOMAIN=floppyfwsecured.com # # And for the logging the scripts use: # Default works for most purposes. # DEBUG_LOG="/dev/vc/3" # # Turning on syslogd and klogd. # This is a nice thing but will eat CPU which is why it is turned # off by default. # The firewall.ini file is where you can turn on logging of rejected packages. # USE_SYSLOG=n # Uncomment to log to /dev/vc/4 instead of /var/log/messages # which aren't exactly a good idea on a ramdisk. SYSLOG_TTY="-O $DEBUG_LOG" # Or the another virtual console than the other messages: # SYSLOG_TTY="-O /dev/vc/4" # Uncomment to log to network. host:port # SYSLOG_NET="-R 10.42.42.42:514" # Uncomment to not print a mark # SYSLOG_MARK="-m 0" [ "$SYSLOG_TTY" -a "$SYSLOG_NET" ] && SYSLOG_BOTH="-L" SYSLOG_FLAGS="$SYSLOG_MARK $SYSLOG_TTY $SYSLOG_NET $SYSLOG_BOTH"