Mon, 09 Jul 2001 20:04:15 -0400
No, it's not dumb ;-)
Anyway, this is really a matter of personal opinion. If you aren't
paranoid and don't have a slow system then you could start up your firewall
after the network interfaces come up, or, if you're the opposite, bring them
up first. Or, you can add some "deny everything" rules to your network
script, then initialize your firewall, etc. etc. etc. You can do it almost
any way you want.
Joe Cave wrote:
> i'm still a newbie so maybe this is dumb but my question is regarding
> startup scripts. i have read in various places about where to put your
> firewall script...before or after your network starts up? do you want
> all your firewall rules to initialize before the network starts or
> after? should you have a small script before the network starts to deny
> everything and then turn on the firewall script after the network
> starts? any help/suggestions is appreciated...