Give this site a try for generating a firewall ruleset:

http://linux-firewall-tools.com/linux/firewall/index.html

-Doug

From: Rusty Carruth <rustyc@inficad.com>
Subject: Ipchains problem. H.E.L.P!
To: plug-discuss@lists.plug.phoenix.az.us
Date: Tue, 31 Oct 2000 07:56:42 -0700 (MST)
Reply-To: plug-discuss@lists.PLUG.phoenix.az.us

Well, I'm having WAY too much fun here.

I've got what I consider a reasonable ipchains setup (I even took the
skeleton from 
a howto somewhere ;-), and I'm getting really strange results.

Packets are allowed that should not be.

Packets are rejected (at the last 'reject all' rule) when they should
have
matched earlier 'accept' rules.

Logging does not work at all any more.

Has anyone else had this kind of problem?

system:
        Linux fw.descomp.com 2.2.17-21mdk #5 Tue Oct 10 23:09:29 MST
2000
i486 unknown
        ipchains 1.3.9, 17-Mar-1999

I can supply my current rules if anyone wants...

rusty