I don't actually use Shorewall. I have built a 2.4.20 kernel
and 1.2.7a iptables to support QUEUE target, but my
firewall code is customized for my needs. Thanks.
I'm doing a url blocker without the expense of a proxy.
I'll let you know how it goes.
Tom Eastep [EMAIL PROTECTED] on
Thanks for the quick response.
-Youngdo
# iptables -nvL
For future reference, /sbin/shorewall status is more useful. I've deleted
all of the iptables output since my mailer is folding it but it showed that
since you last restarted Shorewall, your firewall had ACCEPTed 14
Hi
I need dhcp server and nsupdate script for bering.
How can I found it?
Robit
---
This SF.net email is sponsored by: Microsoft Visual Studio.NET
comprehensive development tool, built to increase your
productivity. Try a free online
The LEAF version I'm using is a Dachstein floppy v1.0.2.
In an effort to make my firewall more secure, and to learn more, I have been
scouring the Internet for
ideas. As a result, I have a few questions regarding the rules set-up in
ipfilter.conf.
1) Instead of accepting all TCP packets to the
Erich,
This is also probably another log to throw on the debate fire.
In a response by Charels, he stated The 4 byte length difference between
the actual size of the packet (332 bytes) and the length indicated by the IP
header (332 bytes) is a known bug with specific DHCP servers (I don't
I just got a Ricoh chipset based PCI-PCMCIA setup... originally I had been
using the Intel chipset for almost a year and a half now (I do wireless
developing for our company) and I just noticed that the speed is better!
Transfering an 8meg file through our wireless links only took apx 55 seconds
Using the libipq library I am capturing DNS packets
for the purpose of url blocking.
In the packet data, weird:
everywhere there should be a dot, there is a random low character
like:
wwwackgoogleeotcom
Anyone know anything about this?
Hi,
A new test WISP-Dist build 2397 with various bugfixes and some
improvements is available. I didn't put it through any testing except
checking that it boots, however the changes are not intrusional and
you should be safe.
Get it from http://www.hazard.maks.net/wisp-dist/downloads
One final suggestion -- you might consider checking the rulesets again
(either in this fashion or the one Tom suggested, though I don't know
if
I'll be able to interpret Shorewall-specific reports) after some time
has
elapsed, just to be sure that the Samba retransmit failures have
actually
Comments inline...
John Wittenberg wrote:
The LEAF version I'm using is a Dachstein floppy v1.0.2.
In an effort to make my firewall more secure, and to learn more, I have been
scouring the Internet for
ideas. As a result, I have a few questions regarding the rules set-up in
ipfilter.conf.
1)
--On Thursday, December 05, 2002 04:05:31 +0900 youngdo
[EMAIL PROTECTED] wrote:
One final suggestion -- you might consider checking the rulesets again
(either in this fashion or the one Tom suggested, though I don't know
if
I'll be able to interpret Shorewall-specific reports) after some
Le Mardi 3 Décembre 2002 20:03, Giorgio Oteri a écrit :
Hi,
I'm a novice, i ask you a question.
I must buy a modem BeWAN ADSL PCI ST card of wich you talk about in chapter
PPPoA configuration of user's guide.
Using the modem with LEAF Bearing 1.0-stable is possible to utilize an ADSL
Greetings:
I've been experimenting with LEAF recently and have been trying to get a
DWL-650 to work on a PCM-4860 SBC through a PCM-3112 PC104 to PCMCIA
adapter, which is based on the Vadem VG-468 chipset. However, during boot,
Intel ISA/PCI/CardBus PCIC Probe reports no bridges found. I've
How does one go about disabling logging for a particular IP address in a
Dachstein CD 1.0.2 setup? My logs are filling up quickly...
~Doug
---
This SF.net email is sponsored by: Microsoft Visual Studio.NET
comprehensive development tool,
Doug Sampson wrote:
How does one go about disabling logging for a particular IP address in a
Dachstein CD 1.0.2 setup? My logs are filling up quickly...
Use the SILENT_DENY parameter in network.conf. If you need more
flexability than this proivdes, you can add custom deny statements in
On Wed, 04 Dec 2002 15:25:58 CST RCamama wrote:
I've been experimenting with LEAF recently and have been trying to get a
DWL-650 to work on a PCM-4860 SBC through a PCM-3112 PC104 to PCMCIA
adapter, which is based on the Vadem VG-468 chipset. However, during boot,
Intel ISA/PCI/CardBus
Hi,
I sent a question about compiling Super-Freeswan user mode
application for Bering into Freeswan mailing list. Then I found
this LEAF mailing list and I think that this is better place
for the question.
So, below is the question (slightly modified) I posted to Freeswan
mailing list a few
What protocol does PROTO=2 refer to?
Example:
Dec 4 16:23:40 CX269409-C kernel: Packet log: input DENY eth0 PROTO=2
192.168.100.1:65535 224.0.0.1:65535 L=28 S=0xC0 I=0 F=0x T=1 (#12)
Thanks for the reply.
~Doug
Use the SILENT_DENY parameter in network.conf. If you need more
Doug Sampson wrote:
What protocol does PROTO=2 refer to?
Example:
Dec 4 16:23:40 CX269409-C kernel: Packet log: input DENY eth0 PROTO=2
192.168.100.1:65535 224.0.0.1:65535 L=28 S=0xC0 I=0 F=0x T=1 (#12)
Proto 2 is IGMP. Note that with ipchains you can also use numeric
protocol numbers
On Wed, 04 Dec 2002 14:30:44 PST you wrote:
What protocol does PROTO=2 refer to?
IGMP...
brad@lab:~/trmwe$ grep igmp /etc/protocols
igmp2 IGMP# Internet Group Management
Example:
Dec 4 16:23:40 CX269409-C kernel: Packet log: input DENY eth0 PROTO=2
Hi
It is probably me doing something idiotic, but I am having trouble running
Bering_1.0-stable_img_bering_1680.bin in the linuxuml-2.4.18-45 Virtual
environment.
I have followed Jacques Nilo's instructions, and can successfully create the
Bering_fs file system, but when I run my startuml
I have made the move to Bering, after using Redhat 7.2 and Shorewall for
quite some time. I have managed to get Bering set up and running quite
similar to my RH setup, providing firewall services, dhcp, PPTP, etc. I
have one problem though...
I have a typical 2 nic setup, with a cable modem as
22 matches
Mail list logo