Prerequisites:
- Apache (debian apache2 package)
- apache php4 module (libapache2-mod-php4)
- php dom xml (php-dom-xml)
- python 2.3
- IPy python package: http://c0re.23.nu/c0de/IPy/
    A sarge debian package is available at http://www.inl.fr/download/nuface.html
    IPy is included in debian for testing (etch) and sid distributions (python-ipy)
- Ldap python libs http://python-ldap.sourceforge.net/

For better performances on netfilter rules generation, you can install psyco python package (python2.3-psyco)


use Makefile to install nuface interface:
make
make install

make: build python script
make install: nufaces web files and python script

Makefile installs /etc/init.d/init-firewall
it creates the following directories:
 - /etc/network/firewall
 - /var/local/nuface
 - /var/local/nuface-logs
 - /var/local/nufw/dyn

You should not leave the directory scripts where nuface is installed for security reasons (or you must protect it from web acces).

how to configure /etc/sudoers file:
nuface must be able to run /etc/init.d/init-firewall to load rules. We use sudo for that.
in /etc/sudoers:
======================
Cmnd_Alias      NETWORK_SCRIPTS = /etc/init.d/init-firewall
Defaults:www-data       !authenticate

www-data hostname=NETWORK_SCRIPTS
======================

www-data is the userid used to run the web server (apache). Replace hostname by the real hostname ;)

create desc.xml in /etc/network/firewall/desc. (See sample file the docbook documentation in
doc/ for more info)

A sample apache configuration file is provided in doc/nuface_apache.conf. Just replace /path/to/some/file with the htpasswd file you created with htpasswd utility.
