Hi,
On Wed, Jul 29, 2009 at 10:11 AM, Javier Barroso wrote:
> On Wed, Jul 29, 2009 at 7:46 AM, Siggy Brentrup wrote:
>> On Tue, Jul 28, 2009 at 22:23 -0400, Andrew Reid wrote:
>>> On Tuesday 28 July 2009 22:04:20 Rob Owens wrote:
>>> > In the interest of learning new things, I'm moving from shorew
On Wed, Jul 29, 2009 at 7:46 AM, Siggy Brentrup wrote:
> On Tue, Jul 28, 2009 at 22:23 -0400, Andrew Reid wrote:
>> On Tuesday 28 July 2009 22:04:20 Rob Owens wrote:
>> > In the interest of learning new things, I'm moving from shorewall to plain
>> > old iptables. I've got my script made, but I'm
On Tue, Jul 28, 2009 at 22:23 -0400, Andrew Reid wrote:
> On Tuesday 28 July 2009 22:04:20 Rob Owens wrote:
> > In the interest of learning new things, I'm moving from shorewall to plain
> > old iptables. I've got my script made, but I'm not sure what the proper
> > procedure is for starting it au
On Tuesday 28 July 2009 22:04:20 Rob Owens wrote:
> In the interest of learning new things, I'm moving from shorewall to plain
> old iptables. I've got my script made, but I'm not sure what the proper
> procedure is for starting it automatically at boot. Is there a "Debian
> way" to do this?
W
In the interest of learning new things, I'm moving from shorewall to plain old
iptables. I've got my script made, but I'm not sure what the proper procedure
is for starting it
automatically at boot. Is there a "Debian way" to do this?
-Rob
--
To UNSUBSCRIBE, email to debian-user-requ...@lis
ROTECTED]> wrote:
>> Hi,
>>
>> I'm trying to learn how to firewall my laptop. I think I've got an
>> appropriate, simple iptables script, but I can't figure out where to put
>> it. Google provides lots of conflicting advice. I think it's suppos
AM, tyler wrote:
>
>> Hi,
>>
>> I'm trying to learn how to firewall my laptop. I think I've got an
>> appropriate, simple iptables script, but I can't figure out where to put
>> it. Google provides lots of conflicting advice. I think it's suppo
On 10/10/2008 09:04 AM, tyler wrote:
Hi,
I'm trying to learn how to firewall my laptop. I think I've got an
appropriate, simple iptables script, but I can't figure out where to put
it. Google provides lots of conflicting advice. I think it's supposed to
go in /etc/init.d/?
estore < /etc/iptables.rules
# And save fw state on shutdown
post-down iptables-save -c > /etc/iptables.rules
On Fri, Oct 10, 2008 at 10:04 AM, tyler <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I'm trying to learn how to firewall my laptop. I think I've got an
> ap
Hi,
I'm trying to learn how to firewall my laptop. I think I've got an
appropriate, simple iptables script, but I can't figure out where to put
it. Google provides lots of conflicting advice. I think it's supposed to
go in /etc/init.d/? What do I need to do with this file to
Hey Jorge,
Jacob Friis Larsen schreef:
By the help of http://iptables-script.dk/ I have created the script
below.
Where should I store it?
You can put it in /etc/network/if-up.d
That way it starts as soon as the interface comes up.
And does it look ok?
Looks OK for basic firewalling. You could a
Jacob Friis Larsen <[EMAIL PROTECTED]> writes:
> By the help of http://iptables-script.dk/ I have created the script below.
> Where should I store it?
You can put it, for example in /usr/local/bin/foobar.sh and then add:
pre-up /usr/local/bin/foobar.sh
> And does it look ok?
I don't know that
By the help of http://iptables-script.dk/ I have created the script below.
Where should I store it?
And does it look ok?
Thanks, Jacob
#!/bin/sh
# Disable forwarding
echo 0 > /proc/sys/net/ipv4/ip_forward
# load some modules (if needed)
modprobe ip_nat_ftp
modprobe ip_conntrack_ftp
# Flush
iptables
On Sat, Mar 13, 2004 at 06:22:22PM -0500, H. S. wrote:
> >Typo.. That should have been /usr/share/doc/iptables/Readme.Debian.gz ..
> >My mistake, but since we're talking about iptables, that ought to be
> >obvious.
>
> No no, the mistake was mine. I am not familiar with this documentation
> syste
Apparently, _David_, on 03/13/04 15:36,typed:
Typo.. That should have been /usr/share/doc/iptables/Readme.Debian.gz ..
My mistake, but since we're talking about iptables, that ought to be
obvious.
No no, the mistake was mine. I am not familiar with this documentation
system else it should have
On Fri, Mar 12, 2004 at 11:59:23PM -0500, H. S. wrote:
> Apparently, _David_, on 03/12/04 09:26,typed:
> >On Fri, Mar 12, 2004 at 01:02:56AM -0500, H. S. wrote:
> >
> >>David Clymer wrote:
> >>
> >>>On Thu, 2004-03-11 at 12:14, H. S. wrote:
> >>>
> >>>I've got an /etc/init.d/iptables, on my testing
Apparently, _David_, on 03/12/04 09:26,typed:
On Fri, Mar 12, 2004 at 01:02:56AM -0500, H. S. wrote:
David Clymer wrote:
On Thu, 2004-03-11 at 12:14, H. S. wrote:
I've got an /etc/init.d/iptables, on my testing box. Might you just be
looking for the wrong script name?
Nope, I was looking for thi
On Fri, Mar 12, 2004 at 01:02:56AM -0500, H. S. wrote:
> David Clymer wrote:
> >On Thu, 2004-03-11 at 12:14, H. S. wrote:
> >
> >I've got an /etc/init.d/iptables, on my testing box. Might you just be
> >looking for the wrong script name?
>
> Nope, I was looking for this script. I also searched for
David Clymer wrote:
On Thu, 2004-03-11 at 12:14, H. S. wrote:
I've got an /etc/init.d/iptables, on my testing box. Might you just be
looking for the wrong script name?
Nope, I was looking for this script. I also searched for *ip* in the
directory rc.S (or the one which executes script at startup)
"H. S." <[EMAIL PROTECTED]> writes:
> I was setting up my home network on Debian and noticed that there is
> not /etc/init.d/rc.iptables or some similar script (that used to there
> when I had installed Woody and dist-upgraded to Sarge a few months
> ago).
I don't think the package maintainer th
On Thu, 2004-03-11 at 12:14, H. S. wrote:
> (this is a retry, my earlier post seems not have made it to the list)
>
> I installed Sarge using the new installer (the new install is a *much
> much* better version now:)
>
> I was setting up my home network on Debian and noticed that there is
> no
(this is a retry, my earlier post seems not have made it to the list)
I installed Sarge using the new installer (the new install is a *much
much* better version now:)
I was setting up my home network on Debian and noticed that there is
not /etc/init.d/rc.iptables or some similar script (that u
I installed Sarge using the new installer (the new install is a *much
much* better version now:)
I was setting up my home network on Debian and noticed that there is
not /etc/init.d/rc.iptables or some similar script (that used to there
when I had installed Woody and dist-upgraded to Sarge a f
On Tue, Dec 30, 2003 at 01:57:21PM -0700, [EMAIL PROTECTED] wrote:
> Quoting Joris Huizer <[EMAIL PROTECTED]>:
> > BTW, if something weird happens, how can I shut it down again? (you
> > never know...)
I just wanted to recommend /etc/init.d/iptables, and looked into the
script, but... It contain
x27;t clear out user-defined changes, but without any
rules to jump into them, it won't matter (if your primary objective is just to
get up and running).
mickey
Thanks mickey :-)
I just put the iptables script in place after making a backup of the
older "script", and internet functi
Quoting Joris Huizer <[EMAIL PROTECTED]>:
> BTW, if something weird happens, how can I shut it down again? (you
> never know...)
iptables -F
iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT
iptables -t nat -F
ought to do it. This won't clear out user-defined changes
Shaun Crossley wrote:
On Wed, Dec 24, 2003 at 10:06:25AM +0100, Joris Huizer wrote:
Hello everybody,
I'm planning to use iptables as it seems it's powerfull and it will let
me choose really what is allowed and what is not (because of p2p stuff
etc. which allways keeps complaining - and out of c
On Wed, Dec 24, 2003 at 10:06:25AM +0100, Joris Huizer wrote:
> Hello everybody,
>
> I'm planning to use iptables as it seems it's powerfull and it will let
> me choose really what is allowed and what is not (because of p2p stuff
> etc. which allways keeps complaining - and out of curiosity)
>
On 24 Dec 2003, Joris Huizer wrote:
> Hello everybody,
>
> I'm planning to use iptables as it seems it's powerfull and it will let
> me choose really what is allowed and what is not (because of p2p stuff
> etc. which allways keeps complaining - and out of curiosity)
>
> However, I never used ipta
Hello everybody,
I'm planning to use iptables as it seems it's powerfull and it will let
me choose really what is allowed and what is not (because of p2p stuff
etc. which allways keeps complaining - and out of curiosity)
However, I never used iptables before and it looks like it's got some
lea
On Wed, 30 Jul 2003, Mark C wrote:
> I'm running a firewall using iptables on each server, these are just
> standalone firewalls they then have to go through my main firewall after
> woulds to go to their final destinations (just do not ask why ;)).
>
> As each pc will have to use apt-get get get
On Wed, Jul 30, 2003 at 01:20:47PM +0100, Mark C wrote:
> i.e I use ftp.www.mirror.ac.uk
>
> running nslookup on this gives me multiple ip addresses, I could create
> a variable for each IP, i.e
>
> APT_MIRROR_AC_UK_1="194.83.57.3"
> APT_MIRROR_AC_UK_2="194.83.57.7"
>
> and so forth, then cre
Hi,
I'm running a firewall using iptables on each server, these are just
standalone firewalls they then have to go through my main firewall after
woulds to go to their final destinations (just do not ask why ;)).
As each pc will have to use apt-get get get new packages and security
updates, if th
On Sun, Dec 09, 2001 at 06:52:49PM +, Am?rico Rocha wrote:
>
> Hi all,
>
> I'm trying to forward port ssh (22) to another computer
> on my intranet
>
> The network topology is simple: 192.168.0.12, is connected
> on eth0 to dhcp, and eth1 acts as a NAT to the intranet
> consisting on 9 comp
Hi all,
I'm trying to forward port ssh (22) to another computer
on my intranet
The network topology is simple: 192.168.0.12, is connected
on eth0 to dhcp, and eth1 acts as a NAT to the intranet
consisting on 9 computers.
here's the firwall script (iptables) i use:
#!/bin/sh
##
35 matches
Mail list logo