>> PROJECT HOMEPAGE Installer Instructions Download the latest installer from the project homepage. It comes packaged with the latest rc.firewall. Open a shell prompt. Make the file executable [chmod +x ./firewall_install.sh] Become root [su -] Run the installer [./firewall_install.sh] Follow the instruction. Optional - Submit comments and suggestions via E-mail or on the messageboard. Installer FAQ What is different about the Virginia Tech Edition? There is only one difference. The Virginia Tech Edition adds an option to trust the address space covered under the Virginia Tech acceptable use policy. What are the system requirements? You need the same kernel level support as outlined in original installation section here. Most Linux distributions support these features out of the box. If your system does not have the required kernel level support the installer will provide feedback as to what is missing. You will also need a the command line program "dialog" installed. I have a slow system and a complex firewall configuration. Firewall initialization takes forever. How can I speed things up? If you have a static system configuration (static IP address, no expected network configuration or hardware changes) you can pass the installer the "fast" command line argument. [./firewall_install.sh fast]. After the first time, the firewall will be run with the "fast" command line option. This is extremely fast, but will skip skip the sanity checking operations required to handle changes in system configuration. What changes to my system does the installer make? The installer will write a preconfigured rc.firewall to /etc/rc.d/. This is the exact same file you would have gotten by downloading the script yourself and manually editing the options at the beginning of the file. If you are using fast mode, it also adds a file called firewall.conf to the /etc directory. Additionally a few lines are added to /etc/rc.d/rc.local to run the firewall at boot time. If rc.local already contains a referenced to /etc/rc.d/rc.firewall then it is not modified. This installation method works for most Linux distributions but the installer will fail if rc.local is not available. We do plan to implement distribution specific installation procedures in the near future. How do I uninstall the firewall? Run "/etc/rc.d/rc.firewall stop" as root, then remove the 3 lines from /etc/rc.d/rc.local that run the firewall on bootup. You can also remove /etc/rc.d/rc.firewall if you wish.