On Mon, Dec 06, 2010 at 03:08:46PM -0500, Matthew Miller wrote:
On Mon, Dec 06, 2010 at 08:27:00PM +0100, Phil Knirsch wrote:
> Basically it's a statefull firewall daemon now that allows us to support
> and implement a lot of those features which have been so critically
Does this *really* need to be implemented as yet another constantly-running
daemon? Because by its nature, iptables already maintains its state, and it
seems unnecessary to have another program running in userspace to do the
same thing.
+1
Still not seeing how /etc/iptables.d wouldn't work ...
Rich.
--
Richard Jones, Virtualization Group, Red Hat
http://people.redhat.com/~rjones
New in Fedora 11: Fedora Windows cross-compiler. Compile Windows
programs, test, and build Windows installers. Over 70 libraries supprt'd
http://fedoraproject.org/wiki/MinGW http://www.annexia.org/fedora_mingw