Firewall
Richard W.M. Jones
rjones at redhat.com
Mon Dec 6 21:50:55 UTC 2010
On Mon, Dec 06, 2010 at 03:08:46PM -0500, Matthew Miller wrote:
> On Mon, Dec 06, 2010 at 08:27:00PM +0100, Phil Knirsch wrote:
> > Basically it's a statefull firewall daemon now that allows us to support
> > and implement a lot of those features which have been so critically
>
> Does this *really* need to be implemented as yet another constantly-running
> daemon? Because by its nature, iptables already maintains its state, and it
> seems unnecessary to have another program running in userspace to do the
> same thing.
+1
Still not seeing how /etc/iptables.d wouldn't work ...
Rich.
--
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
New in Fedora 11: Fedora Windows cross-compiler. Compile Windows
programs, test, and build Windows installers. Over 70 libraries supprt'd
http://fedoraproject.org/wiki/MinGW http://www.annexia.org/fedora_mingw
More information about the devel
mailing list