Package Details: arno-iptables-firewall 2.1.1-2

Git Clone URL: https://aur.archlinux.org/arno-iptables-firewall.git (read-only, click to copy)
Package Base: arno-iptables-firewall
Description: A secure stateful firewall for both single and multi-homed machine
Upstream URL: https://github.com/arno-iptables-firewall/aif/
Licenses: GPL
Submitter: None
Maintainer: Dragonlord
Last Packager: Dragonlord
Votes: 50
Popularity: 0.106750
First Submitted: 2006-09-04 19:50
Last Updated: 2020-09-21 19:26

Latest Comments

« First ‹ Previous 1 2 3 4 Next › Last »

echoblack commented on 2013-11-11 07:43

pull from git
https://github.com/arno-iptables-firewall/aif

Very important this in there
# Permits active FTP; requires ip_conntrack
modprobe_multi nf_conntrack_ftp ip_conntrack_ftp

I'm working on a new PKGBUILD to clone the Github version and bundle in the Systemd .service file. I'll post here when I'm done. I'll also put the pkg will also be in my github.

fukawi2 commented on 2013-06-04 00:14

Please update PKGBUILD to install binaries to /usr/bin instead of /usr/sbin in line with recent changes: https://www.archlinux.org/news/binaries-move-to-usrbin-requiring-update-intervention/

silvik commented on 2013-06-03 17:50

Updated PKGBUILD with berbae's suggestion and the latest iptables path here: https://dl.dropboxusercontent.com/u/1367726/arno/arno-iptables-firewall.tar.gz

I hope the maintainer pushes this to official PKGBUILD for the people that don't follow AUR comments.

You should update because your firewall is likely not enabled (path change) and may interfere with the big bin merge that's announced on the frontpage: https://www.archlinux.org/news/binaries-move-to-usrbin-requiring-update-intervention/

berbae commented on 2013-06-03 08:59

The binary path for

/usr/sbin/adsl-failover
/usr/sbin/arno-fwfilter
/usr/sbin/arno-iptables-firewall

needs to be changed to

/usr/bin/adsl-failover
/usr/bin/arno-fwfilter
/usr/bin/arno-iptables-firewall

and
arno-iptables-firewall.service
arno-iptables-firewall.script
need to be adapted to the new path

silvik commented on 2013-06-01 01:38

@echoblack: it's only a path change /usr/sbin/iptables -> /usr/bin/iptables [because all bin dirs are getting merged]

you can modify iptables and ip6tables paths in firewall.conf or use my updated build below.

echoblack commented on 2013-05-31 22:51

iptables-1.4.18-2-x86_64.pkg.tar.xz

Brakes this firewall.
Last known good

iptables-1.4.18-1-x86_64.pkg.tar.xz

You can get it here if you don't have it in your cache.
Check the gpg sig before installing.
http://94.102.50.79/iptables-1.4.18-1-x86_64.pkg.tar.xz

echoblack commented on 2013-05-31 22:46

iptables-1.4.18-2-x86_64.pkg.tar.xz

Brakes this firewall.

silvik commented on 2013-05-31 04:12

I fixed some issues:
- updated iptables path
- updated service file, starts earlier and faster (adapted from ufw.service)

https://dl.dropboxusercontent.com/u/1367726/arno-iptables-firewall.tar.gz

silvik commented on 2013-05-22 18:05

@mpal: you're right. also, the permissions on the .service file are wrong (should be 644)

there is a tarball below, in one of my comments, with these corrections.

silvik commented on 2013-05-22 18:05

@mpal: you're right. also, the permissions on the .service file are wrong (shoul be 644.

there is a tarball below, in one of my comments, with these corrections.