[Pkg-utopia-maintainers] Bug#426683: network-manager: nm should have basic firewalling framework

Ritesh Raj Sarraf rrs at researchut.com
Wed May 30 07:56:00 UTC 2007 

Package: network-manager
Version: 0.6.4-8+b1
Severity: wishlist

NetworkManager is cool but it would be cooler if there could be some
minimal firewalling capabilities clubbed with it.

Currently, adding a script to /etc/network/if-up.d/firewall does the job.

rrs at learner:~$ cat /etc/network/if-up.d/firewall
#!/bin/bash

if [ $IFACE == "lo" ]; then
    echo;
else
    /sbin/iptables -A INPUT -i $IFACE -m state --state NEW,INVALID -j DROP;


Probably, you could either put such scripts in the
/usr/share/doc/$$/example folders and document it in the README.Debian
file or else add similar framework into Debconf.

This feature would be good for users.

Thanks,
Ritesh

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (990, 'testing'), (550, 'unstable'), (500, 'stable'), (350, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.21-debian (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages network-manager depends on:
ii  adduser              3.102               Add and remove users and groups
ii  dbus                 1.0.2-1             simple interprocess messaging syst
ii  dhcdbd               2.0-5               D-Bus interface to the ISC DHCP cl
ii  hal                  0.5.9-3             Hardware Abstraction Layer
ii  ifupdown             0.6.8               high level tools to configure netw
ii  iproute              20061002-4          Professional tools to control the 
ii  iputils-arping       3:20020927-6        Tool to send ICMP echo requests to
ii  libc6                2.5-9               GNU C Library: Shared libraries
ii  libdbus-1-3          1.0.2-5             simple interprocess messaging syst
ii  libdbus-glib-1-2     0.73-2              simple interprocess messaging syst
ii  libgcrypt11          1.2.4-2             LGPL Crypto library - runtime libr
ii  libglib2.0-0         2.12.12-1           The GLib library of C routines
ii  libgpg-error0        1.4-2               library for common error values an
ii  libhal1              0.5.9-3             Hardware Abstraction Layer - share
ii  libiw29              29~pre21-2          Wireless tools - library
ii  libnl1-pre6          1.0~pre6-5          Library for dealing with netlink s
ii  libnm-util0          0.6.4-8+b1          network management framework (shar
ii  lsb-base             3.1-23.1            Linux Standard Base 3.1 init scrip
ii  wpasupplicant        0.6.0~cvs20070224-2 Client support for WPA and WPA2 (I

Versions of packages network-manager recommends:
ii  network-manager-kde           1:0.1-4    KDE systray applet for controlling

-- no debconf information

More information about the Pkg-utopia-maintainers mailing list