Summary: Iptables firewall rules to stop incoming/outgoing packets to certain netblocks
Name: bluefire
Version: 0.1
Release: 1
License: GPL
ExclusiveOS: Linux
Group: System Environment/Base
URL: http://www.virtualblueness.net/~blueness
Source: %{name}-%{version}.tgz
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
BuildArch: noarch
Requires: chkconfig
Requires: iptables


%description
This script provides two firewall services:

1. It adds iptable rules on a RedHat box to firewall out any
specified IPs AND firewall in the same IPs to frustrate spyware.
So, rules are added to both the INPUT and OUTPUT chains.  The
same rules are also applied to the FORWARD chain in case the box
is also being used as a router.

2. It logs any bad packets from possible stealth scans.

The script resides in /etc/init.d, runs at boot after /etc/init.d/iptables,
and is careful to only add to any iptable rules already in place;
so, it will leave previous applied rules unaltered when adding/removing
its own rules.

%prep
%setup

%build

%install
rm -rf $RPM_BUILD_ROOT
mkdir -p $RPM_BUILD_ROOT/etc/init.d/
install bluefire $RPM_BUILD_ROOT/etc/init.d/bluefire
mkdir -p $RPM_BUILD_ROOT/etc/sysconfig/
install -m 644 bluefire.conf $RPM_BUILD_ROOT/etc/sysconfig/bluefire.conf

%clean
rm -rf $RPM_BUILD_ROOT

%post
/sbin/chkconfig --add bluefire

%preun
/sbin/chkconfig --del bluefire

%files
%doc AUTHORS  ChangeLog  COPYING  INSTALL  NEWS  README
%config /etc/sysconfig/bluefire.conf
%defattr(-,root,root)
/etc/init.d/bluefire

%changelog
* Wed Aug 20 2003 Blueness <blueness@virtualblueness.net>
- First release