pyroman for Debian
------------------
When you have configured pyroman, edit /etc/defaults/pyroman and set the
variable there to "y" to have it setup the firewall at boot time.
(For systemd, use "systemctl enable pyroman.service")

To test new firewall configurations, I recommend to make use of
$ pyroman safe

Which will rollback firewall changes if you fail to acknowledge them
within 30 seconds, in the case you've locked yourself out.
(You could of course setup some at job to do the same, but this is easier)

It is perfectly acceptable (and a planned feature) to use pyroman primarily
to pre-generate an iptables script, and load this directly via
iptables-restore at boot time.

 -- Erich Schubert <erich@debian.org>, Tue, 12 Jun 2012 22:53:19 +0200