Re: Apache proxying illegitimate requests
I fixed it like this: Location / Limit CONNECT Order deny,allow Deny from all /Limit /Location Thanks for your time. -- I would rather starve than lose your acceptance .''`.My eyes will always show my empty soul : :' :- Boy Sets Fire `. `' Proudly running Debian GNU/Linux (Sid 2.4.20 Ext3) `- www.amayita.com www.malapecora.com www.chicasduras.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
udp broadcast forwarder
how i can bridge udp broadcast traffic on my router between each interface something like ipxbridge but for udp broadcast traffic i want to make people can browse lan games on different network and from each of three networks people can see same LAN -- Feci quod potui, faciant meliora potentes! signature.asc Description: This is a digitally signed message part
Re: udp broadcast forwarder
Be warned that the game that you are trying to play was designed to experience exceptionally low latency -- going over a WAN may cause it to choke. You might find that after doing all of this work, you can't even play the game that you wanted to. We don't know what kind of router you have, but I must assume something Debian based. And since this is broadcast traffic, any host on your LAN is going to pick up these packets -- not just the gateway. If you are not using something Debian related, then you are asking in the wrong place. =) You can capture the UDP broadcast packets with iptables, and then mangle and forward them over something like a GRE tunnel. man iptables will help you figure out the rule that you will need. The destination is of course going to be your network broadcast address, along with the fact that the packets are UDP and probably of a specific port range will let you create a unique rule. The target of your rule will be to forward to you're GRE tunnel with the destination to one of your other LANs, where another device is going to be the tunnel endpoint. I think that the big problem here is the destination field of the UDP/IP packets -- they are going to be for one LAN, and not the others. I guess you will have to mangle the packets too. iptables can do this. GRE tunneling capability is a Linux kernel issue, and you will have to include that during compile time, or make it a module (if a modularizing it is possible). Create your tunnel with ifconfig (I think???). Do a man ifconfig here. I didn't answer your question directly, but this can help you figure out how to do it on your own. This isn't going to be pretty, but it can be done with a little careful thought. You are going to need to work with Linux kernel compiling, iptables, ifconfig, and IP networking. Good luck! kgb wrote: how i can bridge udp broadcast traffic on my router between each interface something like ipxbridge but for udp broadcast traffic i want to make people can browse lan games on different network and from each of three networks people can see same LAN -- # Jesse Molina # Mail = [EMAIL PROTECTED] # Page = [EMAIL PROTECTED] # Cell = 1.407.970.0280 # Web = http://www.opendreams.net/jesse/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Apache proxying illegitimate requests
On Sun, Jun 08, 2003 at 05:35:52PM +0200, Amaya wrote: I fixed it like this: Location / Limit CONNECT Order deny,allow Deny from all /Limit /Location Thanks for your time. better yet, if you're not using apache's proxying capability(*) then DON'T ENABLE THE PROXY MODULE. comment out the LoadModule line for libproxy in your httpd.conf, like so: # LoadModule proxy_module /usr/lib/apache/1.3/libproxy.so (*) which is a pretty stupid capability, anyway. squid is a much better tool for that job. craig -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Apache proxying illegitimate requests
I am seeing really strange requests in my different machines' logs: 130.94.69.92 - - [31/Jan/2003:07:58:17 +0100] CONNECT maila.microsoft.com:25 HTTP/1.0 405 309 64.70.0.26 - - [03/Feb/2003:11:18:19 +0100] CONNECT 64.12.137.121:25 HTTP/1.0 405 309 64.70.0.26 - - [03/Feb/2003:11:18:19 +0100] CONNECT 64.12.138.89:25 HTTP/1.0 405 309 64.70.0.26 - - [03/Feb/2003:11:18:20 +0100] CONNECT 152.163.224.122:25 HTTP/1.0 405 309 217.21.114.132 - - [19/Feb/2003:05:06:10 +0100] CONNECT 207.46.181.13:25 HTTP/1.1 200 10837 67.41.194.17 - - [20/Feb/2003:16:19:47 +0100] CONNECT maila.microsoft.com:25 HTTP/1.0 200 10889 67.41.194.17 - - [20/Feb/2003:16:19:49 +0100] CONNECT maila.microsoft.com:25 HTTP/1.0 200 10793 67.41.194.17 - - [20/Feb/2003:16:19:50 +0100] CONNECT maila.microsoft.com:25 HTTP/1.0 200 10793 66.140.25.157 - - [08/Jun/2003:15:33:38 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - 66.140.25.157 - - [08/Jun/2003:15:33:38 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - 66.140.25.157 - - [08/Jun/2003:15:54:23 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - 66.140.25.157 - - [08/Jun/2003:15:54:23 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - 66.140.25.157 - - [08/Jun/2003:15:54:23 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - 66.140.25.157 - - [08/Jun/2003:15:54:23 +0200] CONNECT 66.140.25.157:802 HTTP/1.0 200 4050 - - It's like I am being used to proxy requests (is it spammers?) to other machines. How could I stop this and still have my web server up? -- I would rather starve than lose your acceptance .''`.My eyes will always show my empty soul : :' :- Boy Sets Fire `. `' Proudly running Debian GNU/Linux (Sid 2.4.20 Ext3) `- www.amayita.com www.malapecora.com www.chicasduras.com
Re: Apache proxying illegitimate requests
I fixed it like this: Location / Limit CONNECT Order deny,allow Deny from all /Limit /Location Thanks for your time. -- I would rather starve than lose your acceptance .''`.My eyes will always show my empty soul : :' :- Boy Sets Fire `. `' Proudly running Debian GNU/Linux (Sid 2.4.20 Ext3) `- www.amayita.com www.malapecora.com www.chicasduras.com
Re: udp broadcast forwarder
Be warned that the game that you are trying to play was designed to experience exceptionally low latency -- going over a WAN may cause it to choke. You might find that after doing all of this work, you can't even play the game that you wanted to. We don't know what kind of router you have, but I must assume something Debian based. And since this is broadcast traffic, any host on your LAN is going to pick up these packets -- not just the gateway. If you are not using something Debian related, then you are asking in the wrong place. =) You can capture the UDP broadcast packets with iptables, and then mangle and forward them over something like a GRE tunnel. man iptables will help you figure out the rule that you will need. The destination is of course going to be your network broadcast address, along with the fact that the packets are UDP and probably of a specific port range will let you create a unique rule. The target of your rule will be to forward to you're GRE tunnel with the destination to one of your other LANs, where another device is going to be the tunnel endpoint. I think that the big problem here is the destination field of the UDP/IP packets -- they are going to be for one LAN, and not the others. I guess you will have to mangle the packets too. iptables can do this. GRE tunneling capability is a Linux kernel issue, and you will have to include that during compile time, or make it a module (if a modularizing it is possible). Create your tunnel with ifconfig (I think???). Do a man ifconfig here. I didn't answer your question directly, but this can help you figure out how to do it on your own. This isn't going to be pretty, but it can be done with a little careful thought. You are going to need to work with Linux kernel compiling, iptables, ifconfig, and IP networking. Good luck! kgb wrote: how i can bridge udp broadcast traffic on my router between each interface something like ipxbridge but for udp broadcast traffic i want to make people can browse lan games on different network and from each of three networks people can see same LAN -- # Jesse Molina # Mail = [EMAIL PROTECTED] # Page = [EMAIL PROTECTED] # Cell = 1.407.970.0280 # Web = http://www.opendreams.net/jesse/
