DA-Kiss - DirectAdmin specific firewall based on Kiss v2.0
- Thread starter ProWebUK
- Start date
I'm not a real firewall guru so I hope someone can help me?! 
I have installed Kiss which went without any problem. But in my /etc/sysconfig/iptables are still the old rules (shouldn't be there something from KISS?). Should I delete the file or open the file and remove all lines ?
Thanks,
Kark
I have installed Kiss which went without any problem. But in my /etc/sysconfig/iptables are still the old rules (shouldn't be there something from KISS?). Should I delete the file or open the file and remove all lines ?
Thanks,
Kark
Hmm ... I still didn't understand it, so I googled a bit more.
So now I understand that if you 'Flush' IPtables the rules will be deleted but NOT from the file /etc/sysconfig/iptables. So if I want to use KISS I must call IPtables with the command KISS and not /etc/rc.d/init.d/iptables. Because at the moment when the server is rebooted /etc/rc.d/init.d/iptables is called (which is using the /etc/sysconfig/iptables rules). Am I correct on this ?
I'm a slow learner .. sorry
Thanks for the time,
Kamiel
So now I understand that if you 'Flush' IPtables the rules will be deleted but NOT from the file /etc/sysconfig/iptables. So if I want to use KISS I must call IPtables with the command KISS and not /etc/rc.d/init.d/iptables. Because at the moment when the server is rebooted /etc/rc.d/init.d/iptables is called (which is using the /etc/sysconfig/iptables rules). Am I correct on this ?
I'm a slow learner .. sorry
Thanks for the time,
Kamiel
Basically when you run 'kiss stop' it runs the following commands:
/sbin/iptables -P INPUT ACCEPT
/sbin/iptables -P OUTPUT ACCEPT
/sbin/iptables -F
That basically says accept all incoming connections and accept all outgoing conections then remove any rules currently being used.
When you run kiss start it basically just adds the rules specified in the script to iptables. Nothing else is called by kiss.
Chris
/sbin/iptables -P INPUT ACCEPT
/sbin/iptables -P OUTPUT ACCEPT
/sbin/iptables -F
That basically says accept all incoming connections and accept all outgoing conections then remove any rules currently being used.
When you run kiss start it basically just adds the rules specified in the script to iptables. Nothing else is called by kiss.
Chris
ProHS
Verified User
Is APF or Kiss better?
ProHS
Verified User
Well do you know where i can get a list of their features like APF has an offical web site where they list it at?
ProHS
Verified User
No i mean the offical web site for kiss i was using APF as an sample but thank you.
http://www.geocities.com/steve93138/
Not really a list of features, there is some commenting on general lines in the kiss source......... take a look through that to get an idea also
Chris
Not really a list of features, there is some commenting on general lines in the kiss source......... take a look through that to get an idea also
Chris
ProHS
Verified User
does kiss and/or APF run on FreeBSD?
ProHS
Verified User
ok i been messing with it but i will let you know if i get it to work.
ProHS
Verified User
Yea the kiss firewall will not work in FreeBSd because their is no /etc/rc.d/rc.local dir, well the /etc is in all Unix OS acourse but not that hole path and when i did try to run it i got permission denied and i tryed changing the permission's and then it said unknown command. If any one has been successful at getting it to work or re wrote a kiss script let me know i would apprecate but for now i am going to try to get APF to work again.