how do I check that rc.firewall is running


Forum: System
Topic: how do I check that rc.firewall is running
started by: TWILIGHT32

Posted by TWILIGHT32 on Mar. 01 2008,13:56
another newbie question.

I have installed rc.firewall and started it. however ps -A doesn't show me it is running.

is there any way I can check it is really running ?

thanks

Posted by lucky13 on Mar. 01 2008,14:08
Which version of DSL are you running? That extension is for the 2.4.26 kernel, not 2.4.31. If you started it with the correct kernel version, it's running. You can stop it from console and restart and it should show your IP, etc.

Code Sample
sudo /etc/init.d/rc.firewall stop
sudo /etc/init.d/rc.firewall start


If you're running kernel 2.4.31, I think you will get some errors for iptable mismatch because it's going to look for them in /lib/modules/2.4.26.

Posted by skaos on Mar. 01 2008,15:53
I don't think the firewall is a separate process, it is part of the kernel. You can use this command to list the rules:
iptables -L

Posted by TWILIGHT32 on Mar. 02 2008,15:54
Hello skaos,
thanks for your reply.
this is what I get when I run the iptables -L command, however I don't know how to interpret this. does that look ok to you?

thanks
*****************************************************************

with DSL userid:------------------
dsl@box:~$ iptables -L
Note: /etc/modules.conf is more recent than /lib/modules/2.4.31/modules.dep
iptables v1.2.6a: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.

using sudo --------------------
dsl@box:~$ sudo iptables -L
Chain INPUT (policy DROP)
target     prot opt source               destination        
ACCEPT     all  --  anywhere             anywhere           state RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere           state NEW
TRUSTED    all  --  anywhere             anywhere           state NEW

Chain FORWARD (policy DROP)
target     prot opt source               destination        

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination        
DROP       icmp --  anywhere             anywhere           state INVALID

Chain TRUSTED (1 references)
target     prot opt source               destination        
ACCEPT     icmp --  anywhere             anywhere           icmp echo-request
DROP       icmp --  anywhere             anywhere

Posted by TWILIGHT32 on Mar. 02 2008,16:00
Hi Lucky13
thanks for your reply.
attached below is what I get when I stop and start the firewall using the commands you sent.

I get the same message when I start the rc.firewall from mydsl  menu.

it still doesn't show anything under ps -A . Unless as Skaos suggested the rc.firewall is part of the kernel.

can anyone confirm that ?

thanks

=============================================
dsl@box:~$ sudo /etc/init.d/rc.firewall stop
-> Projectfiles.com Linux Firewall version 2.0rc9 running.
-> Performing sanity checks. [ PASSED ]
-> Firewall disabled.
dsl@box:~$ sudo /etc/init.d/rc.firewall start
-> Projectfiles.com Linux Firewall version 2.0rc9 running.
-> Performing sanity checks...... [ PASSED ]
-> Building firewall.... [ DONE ]
-> Successfully secured the following addresses:

Posted by TWILIGHT32 on Mar. 02 2008,16:04
Hi Lucky13

forgot to mention i have kernel 2.4.31

Posted by chaostic on Mar. 02 2008,16:08
Twilight, from those two posts, rc.firewall is up and running.
Powered by Ikonboard 3.1.2a
Ikonboard © 2001 Jarvis Entertainment Group, Inc.