CONTENTS OF TAR FILE:
firewall	-	The init script. Goes into /etc/init.d/
Unload.fw	-	Script used to refer to default policy. Goes into firewall directory (/etc/firewall/)
eth0.enable	-	Script to enable external interface. Goes into firewall directpory (/etc/firewall/)
eth0.disable	-	Script to disable external interface. Goes into firewall directory (/etc/firewall/)
eth0.enable.simple -	Simple script to enable external interface. As replacement for eth0.enable
eth0.disable.simple -	Simple script to disable external interface. As replacement for eth0.disable
README		- 	***SLAP***

WHAT DOES IT DO?:
This is a small set of scripts for SuSE Linux. The scripts can be used to start / stop an iptables firewall and to load / unload an fwbuilder made iptables firewall policy.
Syntax: /etc/init.d/firewall {start|stop|load|unload|status} [policy]
You do not have to give a policy. If not given, the script will use 'hostname'.fw as policy. If you give a policy, be sure it is a fwbuilder compiled policy script (extension is always .fw).
Starting and stopping is done by setting the MAC address of the external interface. Or just shutting it down. Be careful not to do this remotely.
Unloading refers to a default policy. When doing remotely, be sure this default policy is ACCEPT.

HOW TO:
1. Create a directory for your firewall files. Default is /etc/firewall/. You can create another directory, but this will need updateing of the FIREWALL_DIR constant in the 'firewall' script.
2. Copy the files into their location, specified under CONTENTS OF TAR FILE above.
3. Edit eth0.enable and eth0.disable to incorporate the correct MAC addresses and add the correct default gateway in the route add -net statement in 'eth0.enable'. If your ISP doesn't have access based on MAC addresses, or if your NIC does not allow setting of MAC addresses, or if you are not sure, rename eth0.enable.simple and eth0.disable.simple. Then you will only have to edit eth0.enable to incorporate correct default gateway.
4. If your external interface is other than eth0, edit and rename the eth0.enable and eth0.disable files. Additionally change the constants IFCONFIG and IFUNCONFIG int 'firewall' script to whatever you renamed eth0.enable and eth0.disable to.
5. Edit the script 'Unload.fw' and set default policy in constant DEFAULT. Be sure this is ACCEPT if you want to use the init script remotely to unload policies, or you will lock yourself out.
6. Be sure to name your firewall in your fwbuilder policy exactly the same as you have set your hostname (CASE SENSITIVE!). If you do not do so, the script will fail if you do not explicitely give a policy name (that also exists).
7. Place all your policies etc in your firewall directory (/etc/firewall/).
8. If you are totally unfimiliar with init scripts, fwbuilder, firewalls, routing, scripting, don't come crying to me for help but RTFM.

CONTACT:
For comments, ideas, help not covered by point 8 above, or if you just want to thank, flame, have sex with me, mail to uglymotha@wizdom.nu
Anybody who answers 'NO' to the question: 'Have you read the README' will go directly onto the ignore list. Hmmm, why am I even stating this here?
