<a href="http://iran.whyweprotest.net/showthread.php?t=4">http://iran.whyweprotest.net/showthread.php?t=4</a><br><br>It is really mind boggling to me for how fast this is moving and how many people are involved.<br><br><div class="gmail_quote">
On Mon, Jun 15, 2009 at 6:11 PM, Josh More <span dir="ltr"><<a href="mailto:morej@alliancetechnologies.net">morej@alliancetechnologies.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
If you are adding this to an existing server, yes, you need iptables.<br>
It should be included with most modern distros and should have a GUI or<br>
TUI that you can use to configure it if you don't want to hack on files<br>
in /etc/sysconfig.<br>
<br>
However, if you are building a dedicated box to do this, it's important<br>
to realize that it'll probably only be needed for a few weeks. By then,<br>
the situation should either be resolved or your IP will be blocked by<br>
Iran. In that case, just turn off all services except for squid and let<br>
it run sans-firewall. If you wait too long, it won't do anyone any<br>
good... and if all it's doing is a proxy, there's nothing on it to<br>
protect anyway. (Well, nothing that YOU would care about... and I<br>
suspect that the twittering Iranians have bigger concerns than someone<br>
in the US knowing their twitter password.)<br>
<div class="im"><br>
<br>
<br>
-Josh More, RHCE, CISSP, NCLP, GIAC<br>
<a href="mailto:morej@alliancetechnologies.net">morej@alliancetechnologies.net</a><br>
515-245-7701<br>
<br>
</div>>>> Todd Walton 06/15/09 4:40 PM >>><br>
<div><div></div><div class="h5">On Mon, Jun 15, 2009 at 3:31 PM, Josh<br>
More<<a href="mailto:morej@alliancetechnologies.net">morej@alliancetechnologies.net</a>> wrote:<br>
> If you are politically minded (globally) you might want to read this.<br>
> It's a very short HOWTO for setting up a proxy server so that Iranian<br>
> citizens can get news out to the rest of the world:<br>
<br>
It says at the end that you should set up iptables as well. I warily<br>
admit that I've never done this. Is it part of the default CentOS or<br>
Ubuntu server install?<br>
<br>
--<br>
Todd<br>
_______________________________________________<br>
Cialug mailing list<br>
<a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br>
<a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
<br>
_______________________________________________<br>
Cialug mailing list<br>
<a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br>
<a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
</div></div></blockquote></div><br>