Currently I rely on a hardware firewall, but I would like to add a
personal software firewall. I know that I will need a slice of time
to do sufficient reading to get the configuration right, so I thought
that I would browse using Webmin to see what I needed to know,
particularly since I
On Thursday 30 Oct 2003 11:03 am, J.C. Woods wrote:
Just install iptables, and start rolling your own rules. There
are loads of sites that document how to.
So installing iptables will have no 'built-in' rules? That's what I
want, so that I can build it up a little at a time.
You could
On Thursday 30 October 2003 07:01 am, Anne Wilson wrote:
So installing iptables will have no 'built-in' rules? That's what I
want, so that I can build it up a little at a time.
Yes, that is the way that I am running it, to supplement the hardware router
because hardware routers are not
-Original Message-
From: Anne Wilson [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 30, 2003 5:37 AM
To: [EMAIL PROTECTED]
Subject: [expert] Firewall questions
Currently I rely on a hardware firewall, but I would
like to add a
personal software firewall. I know that I will need
On Thursday 30 Oct 2003 12:21 pm, Bryan Phinney wrote:
The problem for me is that the hardware router does not allow
GnomeMeeting to have a range of ports open (it uses h.323
tunneling), so I'm thinking that I will need, eventually, to set
my box dmz and rely on the software one, suitably
Since setting up Shorewall to discard bad/malformed packets, I've been getting
a lot of log entries like this. Why? I know that the displayed destination
address is a broadcast address.
Aug 31 08:31:18 n0sq kernel: Shorewall:badpkt:DROP:IN=eth1 OUT=
On Sun, 2003-08-31 at 09:46, engage wrote:
Since setting up Shorewall to discard bad/malformed packets, I've been getting
a lot of log entries like this. Why? I know that the displayed destination
address is a broadcast address.
Aug 31 08:31:18 n0sq kernel: Shorewall:badpkt:DROP:IN=eth1
On Sunday 31 August 2003 11:43 am, Jack Coates wrote:
On Sun, 2003-08-31 at 09:46, engage wrote:
Since setting up Shorewall to discard bad/malformed packets, I've been
getting a lot of log entries like this. Why? I know that the displayed
destination address is a broadcast address.
Aug 31
On Saturday 11 January 2003 08:49 am, Mark Weaver wrote:
Lorne wrote:
On Friday 10 January 2003 11:13 am, Todd Lyons wrote:
Lorne wrote on Fri, Jan 10, 2003 at 09:15:02AM -0700 :
I've run coyote-linux for 5 years now and have NEVER been hacked. That
is until September of 2002. I spoke with
On Saturday 11 January 2003 02:35 pm, Mark Weaver wrote:
snip
That is what I asked the director yesterday. He said the head dude
is from the CIA and he has always been against it. WFT!?!?
My response was, I need to talk to this guy, because he either
doesn't understand them or
On Saturday 11 January 2003 06:04 pm, Mark Weaver wrote:
On Saturday 11 January 2003 07:47 pm, Lorne wrote:
On Saturday 11 January 2003 02:35 pm, Mark Weaver wrote:
snip
That is what I asked the director yesterday. He said the head dude
is from the CIA and he has always been
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Saturday 11 January 2003 07:47 pm, Lorne wrote:
On Saturday 11 January 2003 02:35 pm, Mark Weaver wrote:
snip
That is what I asked the director yesterday. He said the head dude
is from the CIA and he has always been against it.
On Saturday 11 January 2003 07:25 pm, Mark Weaver wrote:
On Saturday 11 January 2003 09:17 pm, Lorne scribbled incoherently:
Could very well be. Unfortunately the two guys that are in charge of it
are such buffoons that I would not work with them anyhow. I fully expect
them to get fired
As for why against... this network is my home and I can't afford to go
buy another comp and IP just to protect the 4 or 5 boxes behind it.
*grin*
James
On Sat, 2003-01-11 at 10:24, Lorne wrote:
On Saturday 11 January 2003 08:49 am, Mark Weaver wrote:
Lorne wrote:
On Friday 10 January
On Sat, 2003-01-11 at 18:24, H.J.Bathoorn wrote:
On Sunday 12 January 2003 00:47, Lorne wrote:
That is what I think. The reason I want to speak to him. I am not in the
security section. I'm trying. I am positive they are in way over their
heads and I told him it wasn't a matter if but when
I've been lucky so far -- at the company I work for, I'm in charge of all
technology oriented activities (security, database, systems, helpdesk, and
so forth) so if I make a suggestion there is typically very little
resistance to it (since, after all, I've been right several times before
already
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Saturday 11 January 2003 09:17 pm, Lorne scribbled incoherently:
Could very well be. Unfortunately the two guys that are in charge of it
are such buffoons that I would not work with them anyhow. I fully expect
them to get fired soon. They are
On Friday 10 January 2003 12:58 am, Ken Hawkins wrote:
On Friday 10 January 2003 02:50 pm, Ken Thompson wrote:
On Thursday 09 January 2003 08:14 pm, Mark Weaver wrote:
and I did take a look at gShield. The little bugger liked to drove me
nuts!
Mark
I grabbed an old P90 with 32MB
On Friday 10 January 2003 04:15 pm, Lorne wrote:
On Friday 10 January 2003 12:58 am, Ken Hawkins wrote:
SNIP A WHOLE LOT OUT
I have run this against some online security test sites, and they have
all never been able to get more from my computer behind the firewall than
my browser version.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lorne wrote on Fri, Jan 10, 2003 at 09:15:02AM -0700 :
I've run coyote-linux for 5 years now and have NEVER been hacked. That is
until September of 2002. I spoke with the author and he felt his system was
secure and it couldn't have been his
On Friday 10 January 2003 01:31 am, Ken Hawkins wrote:
On Friday 10 January 2003 04:15 pm, Lorne wrote:
On Friday 10 January 2003 12:58 am, Ken Hawkins wrote:
SNIP A WHOLE LOT OUT
I have run this against some online security test sites, and they have
all never been able to get more
On Friday 10 January 2003 11:13 am, Todd Lyons wrote:
Lorne wrote on Fri, Jan 10, 2003 at 09:15:02AM -0700 :
I've run coyote-linux for 5 years now and have NEVER been hacked. That is
until September of 2002. I spoke with the author and he felt his system
was secure and it couldn't have been
hi,
here I have the script for my firewall-masquerade of
rc.firewall-2.2.1
and that's the points, I don't know what to fill in :
+
DNS= #set to your DNS server(s) that
you get zones from
Didn't there used to be a firewall config utility in Mandrake? I need
to open 1 port. Anyone know how to do this form the command line if it
can't be done from the control center?
Darren
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Hi fellow Mandrake users,
I installed Mandrake 7.2 in my old office in India. I setup a basic
firewall and Internet sharing using ipchains as I recall. It was setup
using a simple script that was very likely recommended on MandrakeUser
at the time. Sorry but I don't recall what the script was
InteractiveBastile,
but have you tried SSH? you prolly turned off telnet, but might have left SSH?
On Thursday 06 June 2002 06:12 pm, you wrote:
Hi fellow Mandrake users,
I installed Mandrake 7.2 in my old office in India. I setup a basic
firewall and Internet sharing using ipchains as I
No it wasn't InteractiveBastille :-) It was something downloaded from
the net. I'll try SSH first of course, but it's not easy trying to sort
these things out when the other machine is on dial-up. I'm pretty sure
I stopped all outside activity. What is the best program I can run on
Mandrake
Try nmap, or the GUI front end nmapfe;
Sridhar
- Original Message -
From: Damon Lynch [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, June 06, 2002 4:47 PM
Subject: Re: [expert] Firewall / Internet sharing with Mandrake 7.2 - how
totemporarily turn off?
No it wasn't
It was probably pmfirewall (excellent, and deservably popular at the
time) - do a search and you may find it. If not, I may have a copy that
I can look at and see what can be done - email me privately if so.
Alternative is to just email the other office the ipchains command to
open port 22 and
Yes that's it, pmfirewall. A very handy little program. Does the
following command allow accepting of SSH if pmfirewall has turned it
off? -
ipchains -A input -p TCP -d any/0 22 -j ACCEPT
I'm not very familiar with the command line program they should run to
figure out if sshd is running.
On Thursday 06 June 2002 22:37, you wrote:
Yes that's it, pmfirewall. A very handy little program. Does the
following command allow accepting of SSH if pmfirewall has turned it
off? -
ipchains -A input -p TCP -d any/0 22 -j ACCEPT
I'm not very familiar with the command line program they
Have a look at Mandrake 8.2 -- later versions of IPtables etc.. Then
have a look at Bastille http://www.bastille-linux.org . Just use
Rpmdrake to install it,yes it's on your Mandrake Cds, and configure it
using a command InteractiveBastille another excellent solution is have
a look at
Hey Guys!
I have a simple Mandrake 8.1 box as my router / firewall. I'm looking at
putting a couple of web servers behind the firewall on my LAN. does anyone
know of a good way to set up rules so that the FW can know to send port 80
request to xyz.com to one server and abc.com to another?
I
Belkie, Dan wrote:
Hey Guys!
I have a simple Mandrake 8.1 box as my router / firewall. I'm looking at
putting a couple of web servers behind the firewall on my LAN. does anyone
know of a good way to set up rules so that the FW can know to send port 80
request to xyz.com to one server and
Belkie, Dan wrote:
Hey Guys!
I have a simple Mandrake 8.1 box as my router / firewall. I'm looking at
putting a couple of web servers behind the firewall on my LAN. does anyone
know of a good way to set up rules so that the FW can know to send port 80
request to xyz.com to one server and abc.com
I am using bastille-firewall Scanned my computer in sygatetechcom as
you suggest and all UDP ports are closed
I configured it with InteractiveBastille -x I don't enter anything for
UDP service names or port numbers to allow on public interfaces and let
UDP services to block as default (ie 2049
At 11:18 AM 3/1/2002 +0100, Fedneg wrote:
I am using bastille-firewall. Scanned my computer in
sygatetech.com as
you suggest and all UDP ports are closed.
That's my point. sygatetech.com shows them closed instead of
blocked. sygatetech.com showed some UDP ports open when another port
scanner
Lee Roberts wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall, bastille-firewall, and one other (can't remember
the name). NONE of them block access to the UDP services no matter what I
do. In InteractiveBastille, I don't enter anything for UDP service names
pmfirewall doesn't use iptables. Besides, I used pmfirewall with Mandrake
7.2 and had the same problem.
At 07:37 AM 3/1/2002 -0500, Mike Rambo wrote:
Lee Roberts wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall, bastille-firewall, and one other (can't
Mike Rambo wrote:
Lee Roberts wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall, bastille-firewall, and one other (can't remember
the name). NONE of them block access to the UDP services no matter what I
do. In InteractiveBastille, I don't enter anything for UDP
Mike Rambo wrote:
Have you tried pmfirewall? My co-worker used it on his box.
It was easy to set up and nmap found nothing when I ran it
against the box afterward.
--
Mike Rambo
[EMAIL PROTECTED]
It seems his is using iptables, and pmfirewall will only work with
ipchains..
--
J.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It seems that the sygatetechcom scanner is broken I got the AW Security
Port Scanner 402 for my windows box and used it to scan my linux box It
shows all UDP ports to the public interface blocked I ran the TCP and UDP
port scans on a friends linux
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall, bastille-firewall, and one other (can't remember
the name) NONE of them block access to the UDP services no matter what I
do In InteractiveBastille, I don't enter anything for UDP service names
or port numbers to allow on
How are you checking that they are not being blocked? ie, outside
scanner, nmap
BillK
On Fri, 2002-03-01 at 08:21, Lee Roberts wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall, bastille-firewall, and one other (can't remember
the name) NONE of them block
sygatetechcom
At 09:34 AM 3/1/2002 +0800, William Kenworthy wrote:
How are you checking that they are not being blocked? ie, outside
scanner, nmap
BillK
On Fri, 2002-03-01 at 08:21, Lee Roberts wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've tried tiny firewall,
Hey Guys!
Can anyone suggest some software that is a firewall / viruswall that also
can email me bandwidth usage reports for the box?
Thanks!
--
=
Dan Belkie
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Aaron Winters wrote:
I have 49 Windows PCs (all but 2 are running Win2k and they are 98se),
16 Macs one Win2k DC and 1 MDK 8.1 web, ftp, ssh server that I manage.
They are on a Win2k domain and the DC does all the DNS, the client PCs
all have static IPs. They all get there gateway out
On Sat, 26 Jan 2002 10:56, Civilme wrote:
SNF is a wonderful product for this--put a box with two NICs between the
network and the Novell server and add one static IP on the network
side--there you will need to set up a netmask to enclose your local IPs
(and you can make them local
on one of the snf mail lists there was a thread where i got told off!:-)
for not reading advisories on how to update snf with regards to httpd-naat
and apache, i forget which list but if iirc the procedure is to download the
update rpms manually and to update apache first manually and then
On Sat, 26 Jan 2002 12:41, you wrote:
on one of the snf mail lists there was a thread where i got told off!:-)
for not reading advisories on how to update snf with regards to httpd-naat
and apache, i forget which list but if iirc the procedure is to download
the update rpms manually and to
Of Aaron WintersSent: Thursday, January 24, 2002 4:37
AMTo: Mandrake ExpertSubject: [expert] Firewall/Gateway
?
I have 49 Windows PCs (all but 2 are
running Win2k and they are 98se), 16 Macs one Win2k DC and 1 MDK 8.1 web, ftp,
ssh serverthat I manage. They are on a Win2k domain and the DC
I have 49 Windows PCs (all but 2 are running
Win2k and they are 98se), 16 Macs one Win2k DC and 1 MDK 8.1 web, ftp, ssh
serverthat I manage. They are on a Win2k domain and the DC does all the
DNS, the client PCs all have static IPs. They all get there gateway out from a
Novell server that I
: Re[2]: [expert] Firewall install - smoothwall
On Sat Jan 12, 2002 at 12:53:32PM +, David Stevenson wrote:
I was thinking about that, but I am put off by the 32mb or ram min quoted on the MDK
site. The laptop only has 8mb. I have succesfully loaded mdk 6 and 8 on the laptop,
although I
On Sat Jan 12, 2002 at 12:53:32PM +, David Stevenson wrote:
I was thinking about that, but I am put off by the 32mb or ram min quoted on the MDK
site. The laptop only has 8mb. I have succesfully loaded mdk 6 and 8 on the laptop,
although I did not install any WM's or X as I thought it
btw, what about mandrake snf (single network firewall)? it's based on
mandrake 7.2 (ala kernel 2.2.19) and should support every hardware the
standard mdk 7.2 supports.
on a first glance it seems as if it supports the same features as
smoothwall, too. you'll find it here:
On Mon, 2001-12-17 at 09:21, Dave Sherman wrote:
On Sun, 2001-12-16 at 21:08, Michael Seymour wrote:
snip
I can't speak for Mandrake SNF, but the sysadmins at my local ISP have
told me that SmoothWall (www.smoothwall.org) is very powerful and
flexible.
Hey, before you check out
On 12 Jan 2002 12:24:41 +0100
Tobias Marx [EMAIL PROTECTED] wrote:
I was thinking about that, but I am put off by the 32mb or ram min quoted on the MDK
site. The laptop only has 8mb. I have succesfully loaded mdk 6 and 8 on the laptop,
although I did not install any WM's or X as I thought it
Originally to: All
This is a MIME-formatted message. If you see this text it means that your
E-mail software does not support MIME-formatted messages.
--=_tcob1.net-7235-1008635601-0001-2
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit
Have you considered
On Saturday 05 January 2002 2:34 pm, you wrote:
At 07:06 PM 1/5/2002 -0500, DStevenson wrote:
Is this the document that tells you to install a bloated full OS and then
hack it with
smoothwall, eemm. On a Laptop with 800Meg, 16Mb Ram and, yes, dx400 100
cpu?
If not, I would appreciate
At 11:02 AM 1/4/2002 -0500, [EMAIL PROTECTED] wrote:
I did take a look and did notice that there was a problem, as I mentioned
in the first email I sent on this thread...however I noticed that the new
release 0.9.9 had been released...so I was wondering if this version
supported pcmcia.
Also,
On Saturday 05 January 2002 12:21 pm, you wrote:
At 11:02 AM 1/4/2002 -0500, [EMAIL PROTECTED] wrote:
I did take a look and did notice that there was a problem, as I mentioned
in the first email I sent on this thread...however I noticed that the new
release 0.9.9 had been released...so I was
At 07:06 PM 1/5/2002 -0500, DStevenson wrote:
Is this the document that tells you to install a bloated full OS and then
hack it with
smoothwall, eemm. On a Laptop with 800Meg, 16Mb Ram and, yes, dx400 100 cpu?
If not, I would appreciate the url.
Thanks for being interested enough to look at
HI All,
I will be installing a dedicated firewall box running smoothwall in the near future. I
just want to check some areas that will need to change.
The box on my network connected to the internet via DUP on serial modem uses IP Tables
and Masquerading and Bastille to act as a
Jan 2002 06:38:44 -0500
To: [EMAIL PROTECTED]
Subject: [expert] Firewall install - smoothwall
HI All,
I will be installing a dedicated firewall box running smoothwall in the near future. I
just want to check some areas that will need to change.
The box on my network connected to the internet
At 06:38 AM 1/4/2002 -0500, [EMAIL PROTECTED] wrote:
When I install the Smoothwall firewall (an old Laptop), I will be adding a
second NIC to replace the modem, and connect this NIC to the firewall.
Inet---Firewall---MDK8.0 Box---Network Hub---all other clients
Do I still need
At 06:38 AM 1/4/2002 -0500, [EMAIL PROTECTED] wrote:
HI All,
Obviously, I will be removing the bastille firewall as this becomes redundant.
Thanks in advance.
Dave.
And, yes, by all means get rid of the Bastille (hell, the French had the
right idea when they stormed it). If this list serves
But does anyone know if smoothwall supports pcmcia NIC yet?
I know the old versions did not.
Original Message:
-
From: J. Craig Woods [EMAIL PROTECTED]
Date: Fri, 04 Jan 2002 06:32:26 -0600
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
Subject: Re: [expert] Firewall install
At 11:31 PM 1/4/2002 +1100, ze0 wrote:
Smoothwall is a light-weight Linux distribution, basically dedicated
to firewalling. I'm not sure which it uses, iptables or ipchains.
You can read about it here:
http://www.smoothwall.org
I haven't used it myself, but I hear it is VERY good.
Thanks ze0.
I did take a look , and since it uses the Linux kernel version, 2.2.19, it
must be using ipchains. It does look to be very cool but if
[EMAIL PROTECTED] STFW, he or she will see that there is a
problem when using Smoothwall with pcmcia hardware..
I did take a look and did notice that
On Sun, 2001-12-16 at 21:08, Michael Seymour wrote:
I have played around with SNF and found it to be adequate for a small
network and I currently use it at home; however, I will be looking for a
larger firewall over the next few months for my work environment. We
have 3 e-mail servers and 3
Have you considered www.astaro.com
Greg
On Mon, 2001-12-17 at 09:21, Dave Sherman wrote:
On Sun, 2001-12-16 at 21:08, Michael Seymour wrote:
I have played around with SNF and found it to be adequate for a small
network and I currently use it at home; however, I will be looking for a
I have played around with SNF and found it to be adequate
for a small network and I currently use it at home; however, I will be looking
for a larger firewall over the next few months for my work environment. We have 3 e-mail servers and 3 web
servers with unique IP addresses so I will
]
|Subject: Re: [expert] Firewall Log Question
|
|
|It's always been my understanding that one of the reasons to
|have 192.168.x.x
|Ip numbers in a internal network is to enable,,, oh say a GOOD
|network (or
|even a really lame) Admin to block those IPs frpom external
|sources. just how
|much do
- Project Manager
[EMAIL PROTECTED]
http://www.plannettechnologies.com
- Original Message -
From: Tarragon Allen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, November 20, 2001 10:32 PM
Subject: Re: [expert] Firewall Log Question
A more information is required situation. Also, I'd
On Thu, 22 Nov 2001 10:08, Leif Madsen wrote:
I have to agree with Tarragon here. It doesn't look to me like any sort of
hacking attempt as it looks like their firewall is just recieving packets
to ports which they are blocking and it is dropping them. It very well
could be a machine on
]
To: [EMAIL PROTECTED]
Sent: Tuesday, November 20, 2001 11:32 PM
Subject: Re: [expert] Firewall Log Question
On Wed, 21 Nov 2001 14:09, Eduardo Bencomo wrote:
We are in a mixed network, which includes a router Cisco, a 3COM swich
common to the two networks and a hub where gateway/fire wall
On Thu, 22 Nov 2001 14:41, eduardo wrote:
Thanks for your help.
With this I sent a small description about how network has bean
setting up and the hardware that the we are using.
Network 1 : 10.10.X.X / 255.255.0.0 (The Other Company/Firewall)
Network 2 : 192.168.5.X.X / 255.255.0.0 (My
We are in a mixed network, which includes a router
Cisco, a 3COM swich common to the two networks and a hub where gateway/fire wall
linux computer is connected.
One of the network is my company network
(192.168.X.X / 255.255.0.0. I am in charge of it) and the other network belongs
to
We are in
a mixed network, which includes a router Cisco, a 3COM swich common to the two
networks and a hub where gateway/fire wall linux computer is connected.
One of the network is my company network (192.168.X.X / 255.255.0.0. I am in charge of it) and
the other network belongs to other
On Wed, 21 Nov 2001 14:09, Eduardo Bencomo wrote:
We are in a mixed network, which includes a router Cisco, a 3COM swich
common to the two networks and a hub where gateway/fire wall linux computer
is connected.
One of the network is my company network (192.168.X.X / 255.255.0.0. I am
in
Hiya, well looking at the port numbers 137 138 if I remember right
thats netbios ports,
are you running SAMBA ? on your network ?,
anyway if you turn off those two ports on outgoing packets that should
stop the other
company accusing you of hacking.
But if the other co had a real sys admin
Try /etc/Bastille
On 30 Oct 2001, Bill Kenworthy wrote:
Hi, where are the rules for the tinyfirewall script kept. I want to do
some minor mods.
BillK
--
Arthur H. Johnson II
[EMAIL PROTECTED]
The Linux Box
http://www.linuxbox.nu
Want to buy your Pack or Services from
Starting with Mandrake 7.0 I've now reached Mandrake 8.1 by updating.
I'm very pleased with this version:
Everything works fine: X with hardware acceleration, tv, parallel port
scanner, cups, vmware etc.
But there remains one problem: My second pc (pentium 133 mhz with MDK-8.0)
uses the proxy
Hi all!
I was running Mandrake 7.1 and my firewall was in ipchains and everything
worked fine, since then I've installed mandrake 8.0 and now I run iptables
and now my firewall works for about a day or less, then I have to down the
external interface and up again and then it works again for about
Hello Expert List!
If possible can anybody advise me on the following scenario:
My home network (4 pcs and a laptop of varying Windows / Linux versions)
currently accesses the Internet via a 3Com OfficeConnect ISDN router. The
machines are connected to a hub, which in turn uplinks to the
On Fri, 27 Apr 2001, Martyn Wendon wrote:
So far I've fitted 2 network cards in the Linux box, eth0 is 172.18.9.100
and is connected to the router and eth1 is 172.18.9.101 and is connected to
the hub of the internal network. I've enabled routing in linuxconf, and the
default gateway is set
Martyn Wendon wrote:
So far I've fitted 2 network cards in the Linux box, eth0 is 172.18.9.100
and is connected to the router and eth1 is 172.18.9.101 and is connected to
the hub of the internal network. I've enabled routing in linuxconf, and the
default gateway is set at 172.18.9.30, at
Martyn,
Doesn't it strike as a little weird that both interfaces are on the same
network? Which interface does it send to when it wants to ping 172.18.9.200?
Both? Or one of them, and then which one? You have two topologies going on in
the internal network: star topology on the side of the
... :P
Pierre
Original Message
Subject: Re: [expert] Firewall / Router Advice
Date: Fri, 27 Apr 2001 09:58:54 -0400
From: Pierre Fortin [EMAIL PROTECTED]
To: Martyn Wendon [EMAIL PROTECTED]
References: A1E0FEB3E411D411AD1F0030050124811844CC@NEO
Martyn Wendon wrote:
Hello Expert
hi all,
Has anyone used Kfirewall here?
I needed on in a hurry, so I setup kfirewall to block all the usual ports,
and now I am having trouble getting it to keep its settings after reboot...
is it only supposed to work while x is running? if so thats a bit sad...
is there a way to make the
I haven't used Kfirewall so I can't help with this problem.
However, like many on this list, I use pmfirewall. It's very easy to
configure, supports IPMASQ, and has a good reputation.
You can find it at:
http://www.pointman.org/PMFirewall/
M.
On Saturday 17 February 2001 09:23,
Franki wrote:
hi all,
Has anyone used Kfirewall here?
I needed on in a hurry, so I setup kfirewall to block all the usual ports,
and now I am having trouble getting it to keep its settings after reboot...
is it only supposed to work while x is running? if so thats a bit sad...
is
El Domingo 11 Febrero 2001 01:41, escribiste:
I'll second the suggestion of pmfirewall. It's very easy to set up and does
exactly what it's supposed to do.
Thanks to all who replied!
--
Saludos desde Sevilla
Hi, I've installed LM7.2 recently. I am really impressed by the good job done
by the guys at Mandrake.
Well, here is my question:
I am connecting to the internet via ppp and a modem. As I usually stay
connected during most part of the day I want to have a firewall. After
reading some of this
Jesus,
I am connecting to the internet via ppp and a modem. As I usually stay
connected during most part of the day I want to have a firewall.
For a quick fix I'd suggest pmfirewall ... just download it, put it in
/usr/local/src, do a tar -xvzf, cd to the pmfirewall directory and do a
# sh
I'll second the suggestion of pmfirewall. It's very easy to set up and does
exactly what it's supposed to do.
M.
On Saturday 10 February 2001 16:28, Dave wrote:
Jesus,
I am connecting to the internet via ppp and a modem. As I usually stay
connected during most part of the day I want to
On Sat, Feb 10, 2001 at 04:41:53PM -0800, Michael O'Henly wrote:
I'll second the suggestion of pmfirewall. It's very easy to set up and does
exactly what it's supposed to do.
[snip]
--
Michael O'Henly
TENZO Design
I would suggest using portsentry in addition to something like
Try installing pmfirewall to handle ipchains. I used the DrakConf setup
once, and then had to go back and basicly undo the settings and then
installed pmfirewall with my mods. DrakConf probably does a good job if
you have exactly the setup it expects, but if you dont or not if you
want to
1) the only problem with multiple cards, is that you will have two
modules, and if you are using the LRP floppy, it may just take up room.
Still shouldn't be a problem, though.
2) the video is a bios setting, where you simply allow the computer to
boot without keyboard or video.
3) Check the
1 - 100 of 129 matches
Mail list logo