Very Computer

[ Article crossposted from mail.firewalls ]
[ Author was Ieong Sze Chung Ricci ]
[ Posted on 30 Oct 1997 14:16:33 GMT ]

Hello All,

        I would like to ask a question on adding new rules to the
firewall. If I add a new rule to the firewall (in general), do I need to
restart the firewall again?

        For example, if I re-load new rules to the Cisco router, do I need
to reboot the router? If I use other routers, as firewall, do I need to
reboot them? How about software packet filtering tools such as screend or
KarlBridge?

        How about application gateway firewall? If I use TIS fwtk or
gaultet proxies, do I need to reboot them? Whereas for Microsoft proxy,
and Interlock is restart of daemons required?

        If any one has such information please email or follow up the
thread. Thanks.

Ricci

--
                                                Ricci Ieong Sze-Chung
              _v_
             <_H_>                        .___,
    `==_       |       _=='             |  _ \   _                _
    ~~~~~~/   / \   \~~~~~~             | (_) | (_)   ___   ___  (_)
   ~~~~~~|   |   |   |~~~~~~            | ,_ /   _   /  _) /  _)  _
    ~~~~~~\  |   |  /~~~~~~             | | \ \ | | |  (_ |  (_  | |
      ~~~~~|  \ /  |~~~~~~              |_|  \_\|_|  \___) \___) |_|
        ~~~~\/ T \/~~~~~         **********************************************
         ~~/~\ | /~\~~           *                                            *
          / ~~|||~~ \            * Ieong Sze Chung Ricci                      *

        /      |      \          * Office: Rm 4214                            *
                                 * Office Tel.: 2358 8838                     *
                                 * Hall Tel.: 2358 8567                       *
                                 **********************************************
                                 *   Welcome to have a cup of tea with me !   *
                                 *                                            *
                                 *      The history of the Milky Way          *
                                 *          is turned to another page.        *
                                 *                                            *
                                 *          On board of Brunhild,             *
                                 *           in UST star system,              *
                                 *         Admiral ricci der onion            *
                                 **********************************************

Quote:>    I would like to ask a question on adding new rules to the
> firewall. If I add a new rule to the firewall (in general), do I need to
> restart the firewall again?

For the firewall I'm most familiar with, you add new rules, and then you
commit them.  On committing those rules become active, and are permanent,
unless you remove them again and commit the new rule set.

So, on Cisco's rebooting is necessary only if you want to vape the new
rules you've added, on the firewall I use - no rebooting is necessary at
all.

Regards
Neil

hi Ieong Sze Chung Ricci !

checkpoints firewall needs compiling ( as part of the ip-kernel )
and loading the new rule-set.

connections currently running over the firewall
are not effected by this action. ( normaly )

Quote:

>Hello All,

>    I would like to ask a question on adding new rules to the
>firewall. If I add a new rule to the firewall (in general), do I need to
>restart the firewall again?

Cisco configuration entries take effect when you type 'return' at the
net of the configuration command.  The same is true with TIS Gauntlet.
It may not be true with other firewalls.  You can easily try a simple
test (turn it on, turn it off) to try other firewalls.
Bill