Hi,

I've created a firewall script in my management workstation and am suppose to install the script in the firewall machine which is my local server.

I'm only using one interface for the firewall as it is only to protect the server and not the whole network. The address of the interface (internal address/inside address) is 192.168.0.90. The management workstation address is 192.168.0.248.

I've already created a user(fwadmin), a group(fwadmin), and the directory /etc/fw where the firewall script should be installed and activated.

I want to use user account and not root account to manage the firewall script in the firewall machine. Does this mean that I have to login as fwadmin in the firewall machine and not root?

Now I type this command in the console of the management workstation (where the firewall script is created).

ssh fwadmin@192.168.0.90 sudo -S /etc/fw/New.fw

This is to login to the firewall machine as user fwadmin and copy and activate the firewall script(New.fw) there.

The output that I get is
id : cannot find name for group id 502.

I've already set the permissions for /etc/passwd and /etc/group as 644.

Pls help me solve this problem.

If you're logging in as the user who presumably owns /etc/fs/New.fw, why are you using sudo at all? Also, note that your command doesn't copy anything. Read the scp(1) for that. http://www.linuxcommand.org/man_pages/scp1.html. To call the script, from a remote machine, you'll want to do something like

,

I'm assuming that this is a Bash script that is tested and working locally, and has the correct permissions set.

Also, you had a question about root: it, as always, can do absolutely anything, including as a subset, anything that user fwadmin can do.