-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathINSTALL
84 lines (48 loc) · 2.08 KB
/
INSTALL
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
firewater by Walter de Jong <[email protected]> (c) 2012
firewater COMES WITH NO WARRANTY. firewater IS FREE SOFTWARE.
firewater is distributed under terms described in the GNU General Public
License.
For installing the software, in short, run the following (as root):
./setup.py install
# ./setup.py install
See below for information on how to create a package.
== Configuration ==
The firewall does _nothing_ until you configure it.
Review and edit `/etc/default/firewater` for some basic settings.
Setup your rules using `vi` (or editor of choice) in `/etc/firewater.rules`.
Beware that making a mistake might lock you out of the system, so start out
with a simple ruleset that only logs things.
Next, test the ruleset (verify that there are no syntax errors) and
it must be committed to take effect. The firewall is reloaded when
committed.
# vim /etc/firewater.rules
# firewater test
# firewater commit
Remember: Whenever the ruleset is changed, it must be committed,
otherwise the rules are not active.
== Starting at boot time ==
A committed ruleset persists across reboots, _but only if_ firewater has
been enabled in the boot process.
On systems that use SysV init:
# chkconfig firewater on
# service firewater status
# service firewater start
or
# update-rc.d firewater defaults
# service firewater status
# service firewater start
On systems that use systemd:
# systemctl enable firewater.service
# systemctl status -l firewater.service
# systemctl start firewater.service
== Creating a package ==
On Debian systems you may create a package by using `debian/rules`
On Redhat, CentOS, SUSE and other RPM based distributions you may
create a package by using distutils. You can create the package by
running the following command:
# python ./setup.py bdist_rpm
On most OSes, installing a package does not activate the service.
You must configure and enable the service otherwise the firewall
is not active.
For more information, please consult the documentation at:
http://walterdejong.github.io/firewater/doc/index.html