Contents

Creating the fw.config File on Red Hat Linux 6.1

To configure a Red Hat Linux 6.1 host to use firewall and IP masquerade, you need to create the file /etc/fw.config. The required contents of that file are listed below.

Note: The backslash character (\) indicates that the line in the script should continue without a line break. Do not type the backslash character.

##
## Adapted from S.u.S.E Linux 6.2 rc.config file for IP-Chains
## on Red Hat Linux 6.1
## Adapted by Mostafa Khalil, VMware Technical Support
##
## Formating the boot script messages:
## The boot scripts should use the variables rc_done and rc_fail to
## symbolize their success. See /sbin/init.d/skeleton for an example
## how to use these variables.
## rc_done_up and rc_failed_up do the same as rc_done and rc_failed
## but one line above (useful for starting daemons who talk to user).
## The variable rc_reset is used by the master resource control script
## /sbin/init.d/rc to turn off all attributes and switch on the
## standard character set.
##
## \033 is just ascii ESC
## \033[<NUM>G move to column <NUM>
## \033[1m switch bold on
## \033[31m switch red on
## \033[32m switch green on
## \033[33m switch yellow on
## \033[m switch color/bold off
##
rc_done="\033[71G\033[32mdone\033[m"
rc_failed="\033[71G\033[31m\033[1mfailed\033[m"
rc_skipped="\033[71G\033[1mskipped\033[m"
rc_done_up="\033[1A$rc_done"
rc_failed_up="\033[1A$rc_failed"
rc_unused="\033[71G\033[1munused\033[m"
rc_reset="\033[m\017"
#
# Firewall settings
# Using a sample network address and a Token Ring Card.
# If you are using an Ethernet Card, you may change 'tr0' to 'eth0'
#
FW_START="yes"
FW_LOCALNETS="172.1.233.0/24"
FW_FTPSERVER=""
FW_WWWSERVER=""
FW_SSLSERVER=""
FW_SSLPORT="443"
FW_MAILSERVER=""
FW_DNSSERVER=""
FW_NNTPSERVER=""
FW_NEWSFEED=""
FW_WORLD_DEV="tr0"
FW_INT_DEV="vmnet1"
FW_LOG_ACCEPT="no"
FW_LOG_DENY="yes"
FW_ROUTER="172.16.233.0/24"
FW_FRIENDS="no"
FW_INOUT="yes"
FW_SSH="no"
FW_TRANSPROXY_OUT=""
FW_TRANSPROXY_IN=""
FW_REDIRECT=""
FW_TCP_LOCKED_PORTS="1:1023"
FW_UDP_LOCKED_PORTS="1:1023"
#
# Masquerading settings -
# Using a sample network address and a Token Ring Card.
# If you are using an Ethernet Card, you may change 'tr0' to 'eth0'
#
MSQ_START="yes"
MSQ_NETWORKS="172.16.233.0/24"
MSQ_DEV="tr0"
MSQ_MODULES="ip_masq_cuseeme ip_masq_ftp ip_masq_irc ip_masq_quake \
ip_masq_raudio ip_masq_vdolive"
# The MSQ_Modules should be all on one line

Back to top

© 2001-2002 VMware, Inc. All rights reserved.