arno-iptables-firewall for Debian --------------------------------- This document only describes the differences between the upstream and the Debian version. Please refer to the README file for the regular documentation. The major difference with upstream version is the added debconf layer for configuration management. Basic settings (external interfaces, open ports and internet connections sharing (NAT)) can optionally be handled by debconf. Use 'dpkg-reconfigure -plow arno-iptables-firewall' to reconfigure the firewall at any time. The package includes a log setup for rsyslog (the default sysklog daemon since lenny). By default firewall-related messages will go into /var/log/arno-iptables-firewall. The setup assumes messages to be logged with the default kernel syslog level 'info' (see LOGLEVEL setting in firewall.conf). If the loglevel is changed /etc/rsyslog.d/arno-iptables-firewall.conf has to be modified accordingly. The corresponding logrotate setup at /etc/logrotate.d/arno-iptables-firewall.conf might need to be customized depending on the amount of generated log messages, but the default should be appropriate for most desktop machines. Since version 1.8 there is support for plugins. Plugins are installed in /usr/share/arno-iptables-firewall/plugins. The corresponding plugin configurations are placed into /etc/arno-iptables-firewall/plugins. -- Michael Hanke , Fri, 25. Jan 2008 16:04:47 +0100