
7 Apr
2009
7 Apr
'09
5:07 a.m.
David Lutterkort wrote:
On Mon, 2009-04-06 at 14:36 +0200, Ludwig Nussel wrote:
SuSEfirewall2 does not have such a mechanism and TBH I pretty much dislike the idea of allowing applications to inject arbitrary rules. I'd prefer some higher level abstraction so it's left to the firewall to decide how to translate the request into actual iptables rules (or whatever else technology is used in the background).
How would that be done ? I don't know of any tool that could do that,
Such a mechanism doesn't exist yet. That doesn't mean it can't be implemented in the future. cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)