[PATCH] handbook/firewalls: rewrite warning
Simon L. Nielsen
simon at FreeBSD.org
Wed Feb 16 15:25:32 UTC 2005
On 2005.02.16 18:09:05 +0300, Denis Peplin wrote:
> <warning>
> - <para>When working with the firewall rules, always,
> - always do it on the console of the system running the
> - firewall or you can end up locking your self out.
> - Alternatively, you may setup a cronjob to flush the
> - firewall rules say every five minutes.
> - This may not be acceptable for a corporate firewall,
> - but should be ok for a home firewall.</para>
> + <para>When working with the firewall rules, be
> + <emphasis>very careful</emphasis>. Some configurations
> + <emphasis>will lock yourself out</emphasis> of the server.
> + To be on the safe side, you may wish to consider performing
> + the initial firewall configuration from the local console
> + rather than via <application>ssh</application>.</para>
I would suggest something like:
+ rather than doing it remotely e.g. via <application>ssh</application>.</para>
Just to be a bit more general. Other than that it looks good to me.
--
Simon L. Nielsen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-doc/attachments/20050216/cb51d7a4/attachment.sig>
More information about the freebsd-doc
mailing list