..................................................................... Welcome to the pmfirewall setup script. ..................................................................... You will now be prompted for your system configuration. Normally the defaults are sufficient, but be sure they are correct! Directory to place config files [/usr/local/pmfirewall]: (hit enter here) Using ipchains found at: /sbin/ipchains. What is your External Interface? External Interface [eth0]: ppp0 ..................................................................... You will now be asked questions which will help customize PMFirewall. ..................................................................... Some networks may need to bypass your firewall. While this is not recommended, you have the option below. WARNING: An entry of 0/0 will open your firewall to everyone and render it useless! Are there any IP ranges which require unrestricted access? (y/N): y The IP range must be entered in the ADDRESS/NETMASK format. (ex. 1.2.3.0/24 or 1.2.3.0/255.255.255.0). Enter the IP Range or press ENTER to skip: 192.168.0.1/24 Full access has been granted to 192.168.0.1/24. Do you wish to add others? (y/N): n Some hostile networks may need to be totally blocked. Only add an IP range here if you wish to block them completely. WARNING: An entry of 0/0 will block access to everyone and make all rules added after this useless. Are there any IP ranges which should be blocked completely? (y/N): n Is your IP address assigned via DHCP? (y/N): y Are you running a FTP Server on ports: 20/21 (y/N): y You may allow connections to ports 20/21 from any IP address on the Internet, or just a specific IP range. Please enter the IP range in the ADDRESS/NETMASK format.(ex. 1.2.3.0/24 or 1.2.3.0/255.255.255.0). Enter the IP Range or press ENTER for any IP address: 192.168.0.1/24 Are you running a SSH Server on port: 22 (y/N): y You may allow connections to port 22 from any IP address on the Internet, or just a specific IP range. Please enter the IP range in the ADDRESS/NETMASK format.(ex. 1.2.3.0/24 or 1.2.3.0/255.255.255.0). Enter the IP Range or press ENTER for any IP address: 192.168.0.1/24 Are you running a Telnet Server on port: 23 (y/N): y Are you running a Telnet Server on port: 23 (y/N): y You may allow connections to port 23 from any IP address on the Internet, or just a specific IP range. Please enter the IP range in the ADDRESS/NETMASK format.(ex. 1.2.3.0/24 or 1.2.3.0/255.255.255.0). Enter the IP Range or press ENTER for any IP address: 192.168.0.1/24 Are you running a SMTP Server on port: 25 (y/N): n Are you running a DNS Server on port: 53 (y/N): n Are you running a Finger Server on port: 79 (y/N): n Are you running a Web Server on port: 80 (y/N): n Are you running a POP Server on port: 110 (y/N): n Allow IDENT connections on port: 113 (y/N): n Are you running a NNTP Server port: 119 (y/N): n Are you using NTP, it requires port: 123 (y/N): n Do you wish to open NetBIOS/SAMBA ports 137-139 (not recommended)? (y/N): y You may allow connections to ports 137-139 from any IP address on the Internet, or just a specific IP range. Please enter the IP range in the ADDRESS/NETMASK format.(ex. 1.2.3.0/24 or 1.2.3.0/255.255.255.0). Enter the IP Range or press ENTER for any IP address: 192.168.0.1/24 Are you running an IMAP Server on port: 143 (y/N): n Are you running a SSL Web Server on port: 443 (y/N): n Are you running Routed (RIP) on port: 520 (y/N): n Do you wish to open NFS port 2049 (not recommended)? (y/N): n Do you wish to open X-Server ports 5999-6003 (not recommended)? (y/N): n Are there any other ports you wish to open to the outside? (y/N): n Start PMFirewall on bootup? (Y/n): y PMFirewall has the ability to autodetect your IP address information. You may override the atuodetection and specify your IP information here. Overriding is not recommended if you are assigned a different IP address each time you connect to the outside world. Do you want pmfirewall to autodetect your IP address? (Y/n): y Will this box Masquerade connections for other PC's (y/N): y What is your Internal Interface? Internal Interface [eth0]: eth0 Do you want pmfirewall to autodetect your internal IP address? (Y/n): Will you be running a DHCP Server (y/N): y Copying files to /usr/local/pmfirewall Done! Changing ownership of pmfirewall to root:bin Done! Changing permissions of pmfirewall to 700 Done!