>>>>> "D" == D Stimits <stimits at idcomm.com> writes:

D> Kevin Fenzi wrote:
>> yeah, looks like the redhat 'ipchains' init.d entry doesn't check
>> the return status of ipchains. You guys might want to file a bug in
>> the redhat bugzilla on that one...

D> I did earlier today.

excellent. :)

>> I am using netfilter on my firewall just fine. It's much nicer than
>> ipchains and seems to work well.

D> Will the current ipchains rules work on netfilter, or must they be
D> converted? This is my quandry...deciding what I need to do if I
D> will use iptables instead of ipchains, with an interest only in
D> packet filtering.  What are the options?

you would have to convert them. The syntax is much the same, but there
are diffrences.

I would reccomend looking at some of the nice iptables scripts that
have sprung up (check freshmeat) and see if you can fix one of those
to meet your needs. ;)

D> D. Stimits, stimits at idcomm.com

