Joined: 07 Feb 2003
Location: Graz, Austria (Europe - no kangaroos.)
|Posted: Wed Feb 26, 2003 2:23 pm Post subject: editing firewall scripts from remote
|This might sound obvious, but is still easy to do.
Firewall Servers usually run "headless", i.e. no monitor or keyboard attached. They are also typically not in the same room as your workstation.
So I was happily hacking away on a new firewall script on our masquerading machine, logged in thru ssh.
At one point, the whole thing stopped working because of a typo in the script, so I issued
|[root@fwhost] # iptables -F |
which makes it impossible to get back in from remote.
In my case I drove two hours to my home, and hit the reset button. (Which is brutal, but I didn't have a keyboard to plug in handy. Also, it is not advisable to hot-plug a keyboard)
Please put [SOLVED] in your topic if you are a moron.