Quote:
This does however mean that you will need to maintain two copies of rc.firewall (One for ppp0 and the other from eth0).
|
I've been tinkering with this since posting my query. Yes, I decided to use multiple firewall scripts. I have fine-tuned things sufficiently of late that I probably could use some variables to then merge the individual scripts into one and then set the iptable rules according to how I called the script with the variables. But for now, I think things are working.
Also confusing the issue greatly (for a while) is that the ppp daemon fails to reset the default gateway in the routing table. Thus, in my scripts I am manually taking care of that, but that issue temporarily masked my observations in what I was trying to accomplish otherwise. I posted a query of that problem in another thread. Nonetheless, I could trim a few lines of script if I could resolve that problem.
A dialup script I wrote is where I decided to toggle the INET_IFACE variable and run the appropriate firewall script. Upon hanging up I reverse the process. FWIW, I had to add my mortal user account to the sudo list to run the firewall script. In all I think I have succeeded, but this was a lot of work! Whenever I get my web site online I'll have a lot of this kind of info posted for people to browse---and either learn or laugh at my efforts.