thanks man i appriciate it
[EMAIL PROTECTED] wrote:
Hi I was wondering if there is a rule I can set to drop *all* icmp? if
so how would I add the rule?
try something like this:
ipchains -A INPUT -p icmp -s 0/0 -j DROP
or
ipchains -A INPUT -p icmp -i $INTERFACE -j DROP
$INTERFACE = your outer
Hi I was wondering if there is a rule I can set to drop *all* icmp? if so how would I add the rule?
I need to make a port enables on ipchains. but I cannot find how
to do it. any ideas please let me know the port is 6901
Thanx in advance
Mike
Get your own free email account from
http://www.popmail.com
Want to buy your Pack or Services from
Hi,
the problem was that Mandrake did not install ipchains
during its installation during expert mode, select
individual packages and medium security. It didn't
have any check box for ipchains at all. ipchains did
nt figure in list of packages. I had to install it
thru' rpm on CD and then when I
On Saturday 06 April 2002 09:48 am, Payal Rathod wrote:
Hi,
the problem was that Mandrake did not install ipchains
during its installation during expert mode, select
individual packages and medium security. It didn't
have any check box for ipchains at all. ipchains did
nt figure in list of
Hello all,
Me and my friend have installed Mnadrake 8.0 3 times
and all the times we found out that
ipchains was not getting installed at all. 2nd and 3rd
time anticipating this problem we were
on lookout for ipchains package to be ticked. We
install in expert mode with security level
to medium
ipchains is the old stuff - iptables is used now.
HTH
Brian
On Sat, 2002-04-06 at 12:45, Payal Rathod wrote:
Hello all,
Me and my friend have installed Mnadrake 8.0 3 times
and all the times we found out that
ipchains was not getting installed at all. 2nd and 3rd
time anticipating this
unless i'm wrong, the new kernels don't have 'built-in'
support for ipchains. which isn't to say you can't use
ipchains with the new 2.4 kernels...but you'll probably
need to build a new kernel with ipchains support or try
loading ipchains as a module.
and, i would recommend that you get
On Friday 05 April 2002 09:57 pm, Brian Parish wrote:
ipchains is the old stuff - iptables is used now.
does 8.0 have a 2.4 kernel, if not than ipchains is what he needs!
--
Gerald Waugh : Registered Linux user # 255245
http://www.frontstreetnetworks.com
Front Street Networks LLC - ph.
Hi,
Thanks for the mails. But I can use ipchains properly
with Mandrake 7.0, 7.1, 7.2, 8.1, 8.2 without any
kernel recompiling, then why not with 8.0?
has anybody faced such a problem with 8.0?
Thanks and bye.
-Payal
--- Gerald Waugh [EMAIL PROTECTED]
wrote:
On Friday 05 April 2002 09:57 pm,
Hi,
I have to re-configure for a remote access vpn.
Authentification seems to work so far over udp port xx.
But I can't send data over 'IP protocol 50 bi-directional'.
How is the ipchains syntax to open 'IP protocol 50 bi-directional'
in my firewall rules?
Thanx for your help!
--
ciao
I setup sharing my internet connection under Mandrake Control Center on
MDK 8. It installed ipchains, iptables, and iproute2? Are all these
programs used for the internet sharing or does it install some of these
for a just in case senerio? What are they all supposed to do?
Thanks,
Kevin
iproute2 is the way for kernel 2.4.x to handle IP source routing. (See docs
at http://www.linuxgrill.com/iproute2-toc.html for information)
ipchains and iptables are roughly equivalent to one another in that they
both have the same end result -- configuring a firewall. ipchains is the
--- civileme [EMAIL PROTECTED] wrote:
On Tuesday 07 August 2001 22:20, jen wrote:
L's and G's,
This is my first time setting up
InteractiveBastille and I must admit, It
is a little nerve-racking to not know exactly what
your doing. While I do
undertand the premises of services,
On Sunday 17 June 2001 09:22 pm, s wrote:
Well, naw, but it's cool he switched. I was just mentioning it
because Tom said Steve was unwise to use windows for a server.
-s
No, I said I lack faith in any security expert who would choose the
most insecure server available, Winblows.
On Sat, 16 Jun 2001, Tom Brinkman wrote:
On Saturday 16 June 2001 03:52 pm, root wrote:
ipchains has been improved (long ago). 2.4.x kernels have iptables
support. Check to make sure iptables is installed (updated,
iptables-1.2.2-2mdk), and then run DrakConf as root and answer the few,
On Sunday 17 June 2001 02:32 am, Ross Slade wrote:
ipchains has been improved (long ago). 2.4.x kernels have
iptables support. Check to make sure iptables is installed
(updated, iptables-1.2.2-2mdk), and then run DrakConf as root and
answer the few,
Is iptable's command format
On Sun, 17 Jun 2001 18:59, Tom Brinkman wrote:
Whatever, when you believe you've got it right, then try scans:
https://grc.com/x/ne.dll?bh0bkyd2 [probly not worth the time since
this 'expert' got hacked and shut down a few weeks ago. So much for
their security ; ]
Steve Gibson (the
I totally agree ! He also found some major bugs and spyware in Netscape
Navigator, which they denied, then threatened to sue Steve, until he proved
it. At this point, the folks from Netscape quietly apologised, and fixed the
holes, etc with Netscape 4.76 !
Anyone who criticizes Steve is
He has recently moved his site and ngs to a unix server (after the recent DoS
attacks). So I guess he's catching on. :-)
-s
On Sunday 17 June 2001 10:52 am, you wrote:
Personally, I lack faith in any security 'expert' that chooses to
run his site on the most insecure server available,
Well, naw, but it's cool he switched. I was just mentioning it because Tom
said Steve was unwise to use windows for a server.
-s
On Sunday 17 June 2001 05:53 pm, you wrote:
s wrote:
He has recently moved his site and ngs to a unix server (after the recent
DoS attacks). So I guess he's
s wrote:
He has recently moved his site and ngs to a unix server (after the recent DoS
attacks). So I guess he's catching on. :-)
Can Linux protect him from a DoS attack?
Randy Kramer
Well, actually he thinks it might help. Something about better filters since
he has the attacker's ip addys (and the hijacked machines they used), in
addition to a something similar to portsentry's methodology. I don't
remember all the details, but it's on his site and in his ngs. However,
The 2.4 kernel uses iptables, no?
Steve
On Sat, Jun 16, 2001 at 03:52:20PM -0500, root wrote:
Where the heck is the ipchains command... Using an install of LM8.0 on
medium security. Looked in /usr/sbin and all over the place but seems to
be afk...
--- root [EMAIL PROTECTED] wrote:
Where the heck is the ipchains command... Using an
install of LM8.0 on
medium security. Looked in /usr/sbin and all over
the place but seems to
be afk...
After 'modprobe ipchains' it's in /sbin/ipchains for
me. I'm using a pretty stock 8.0 install.
On Saturday 16 June 2001 03:52 pm, root wrote:
Where the heck is the ipchains command... Using an install of LM8.0
on medium security. Looked in /usr/sbin and all over the place but
seems to be afk...
ipchains has been improved (long ago). 2.4.x kernels have iptables
support. Check to
--- Jon Doe [EMAIL PROTECTED] wrote:
My firewall won't allow me to connect to my news
server or ICQ, can someone
help me out with rules I can add to let news and ICQ
connect?
I'm assuming your still using kernel 2.x with
IPChains, but if I'm wrong you may have better luck
with IP Tables
My firewall won't allow me to connect to my news server or ICQ, can someone
help me out with rules I can add to let news and ICQ connect?
Ok I have a bit of an answer to my question :)
http://antarctica.penguincomputing.com/~netfilter/unreliable-guides/NAT-HOWTO/index.html
Well I found a really super small thing in this how to
that got the connection sharing up but I just wonder
if everything will work. I still dont see the
I normally share my connection with my windows machine
using ipchains and a few modules. I went to attempt
this in 8.0 after the connection sharing wizard
didn't give me the functionality I needed. The
windows box can now surf the web but I cannot transfer
files in icq, aim, or use things like
I've moved from Red Hat 7.1 to Mandrake 8.0 out of frustration with trying to
get masquerading to ppp to work.
With Mandrake, ppp started to work, but then all of a sudden it stopped working
completely upon connection with the message 'serial line is looped back'. I
read a recent post on this,
On Monday, May 14, 2001, Clarence Donath wrote:
Another problem I have is ipchains. It doesn't install by default even though
I installed every package?
I don't know about the other problems, but if you're using the 2.4.3
kernel with Mandrake 8.0, it uses iptables instead of ipchains.
--
, 2001 1:14 PM
Subject: [newbie] ipchains n pmfirewall
hi
i have checked
http://www.linux-mandrake.com/en/demos/Networking/IPmasq/pages/ipmasq3.php3
and used the documentation to install pmfirewall. i'm connected throught
adsl modem and to get into outer web i have to ouse the isp's site
(login1
and it is working great. Don't
bother with PMfirewall. It's no good anyway.
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, April 01, 2001 1:14 PM
Subject: [newbie] ipchains n pmfirewall
hi
i have checked
http://www.linux-mandrake.com/en/demos
To: [EMAIL PROTECTED]
Subject: Re: [newbie] ipchains n pmfirewall
sorry that i forgot to mention , all i want is to protect one single
machine from constant daily attacks , not a private network.
tnx anyway :)
[EMAIL PROTECTED] wrote:
Hi
Go to Mandrakeuser.org and click on connectivity
-to
on IP Masqueradin there. I followed that one and it is working great.
Don't bother with PMfirewall. It's no good anyway.
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, April 01, 2001 1:14 PM
Subject: [newbie] ipchains n pmfirewall
hi
hi
i have checked
http://www.linux-mandrake.com/en/demos/Networking/IPmasq/pages/ipmasq3.php3 and used
the documentation to install pmfirewall. i'm connected throught
adsl modem and to get into outer web i have to ouse the isp's site (login1.telia.com)
to log on else i have no connection at
Hello guys,
I have this config in my ipchain both eth0 and eth1 has a public
ip. Is it correct? I want all traffic from 192.168.100.0/24 will pass thru
eth0 and 192.168.101.0/24 will also pass thru eth1.
thanks in advance.
/sbin/ifconfig eth0:0 192.168.100.1 netmask 255.255.255.0 up
OK,
I setup my linux box using the "Home-Network-Howto" and everything is
working great using ipchains and ipmasq. I'm using 2 nic cards, one
with a public addy and one with a private addy.
What I need to do is pass several of my public ip's thru the linux box
to servers on my private network.
On Sun, 26 Nov 2000, Melvin C. Etheridge wrote:
I setup my linux box using the "Home-Network-Howto" and everything is
working great using ipchains and ipmasq. I'm using 2 nic cards, one
with a public addy and one with a private addy.
What I need to do is pass several of my public ip's thru the
bascule wrote:
hi dan, i've been deleting mail today so your message appears orphaned
but i think you are replying to a mail i sent and i would like to
thankyou for replying, you are right, i was confused initially about the
transient nature of ipchains rules and needing to run the commands
thank you mark,
is there a simliar prog that you know of that might help me set up the
routing from my other machines so that i can access the internet from
them? simply setting up masquerading doesn't seem to do the trick, i
think this is to do with 'default gateways' but i confess the concept
On Sat, 04 Nov 2000, you wrote:
thank you mark,
is there a simliar prog that you know of that might help me set up the
routing from my other machines so that i can access the internet from
them? simply setting up masquerading doesn't seem to do the trick, i
think this is to do with
I use ipchains on 2 linux boxes I have here at home (no pmfirewall). There
is a pair of scripts, one called ipchains-save, the other
ipchains-restore.
If you write a bunch of firewall rulesets and you are happy, you can just
do something similar to:
ipchains-save /etc/firewall
Then in one of
bascule wrote:
i am currently reading up about ipchains but i can find no info about
where the rules/scripts are kept, all i can deduce is that one creates a
script of any name and runs it at boot up - or whenever, is that right?
bascule
My ipchains is stored in /sbin
Marsden
To: [EMAIL PROTECTED]
Sent: Saturday, November 04, 2000 11:02 AM
Subject: [newbie] ipchains
i am currently reading up about ipchains but i can find no info about
where the rules/scripts are kept, all i can deduce is that one creates a
script of any name and runs it at boot up - or whe
On Sat, 30 Sep 2000, [EMAIL PROTECTED] wrote:
Oh, if it were as simple as that to get away from U.S. politics. -Gary-
In a message dated 9/30/2000 2:27:29 PM Eastern Daylight Time,
[EMAIL PROTECTED] writes:
I'm thinking about moving to Canada.
I moved to the depth of Darkest Paraguay,
Hello,
My first post on the newbie list...
I have been struggling for some time to get SSH to work on my Linux box
(2.2.13-4mdk : Mandrake 6.1).
I believe I finally have it up and running, because I am able to create a
SSH connection from/to the machine itself.
What I can't seem to manage is
At 08:11 AM 9/27/00 -0500, you wrote:
Hello,
My first post on the newbie list...
I have been struggling for some time to get SSH to work on my Linux box
(2.2.13-4mdk : Mandrake 6.1).
I believe I finally have it up and running, because I am able to create a
SSH connection from/to the machine
:58 AM CST
Please respond to [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
cc:
Subject: Re: [newbie] ipchains and ssh
At 08:11 AM 9/27/00 -0500, you wrote:
Hello,
My first post on the newbie list...
I have been struggling for some time to get SSH to work on my Linux box
(2.2.13-4mdk : Mandra
would not a virtual nic work here?
eth0:1, eth0:2 etc..??
=-Original Message-
=From: Adrian Wildey [mailto:[EMAIL PROTECTED]]
=Sent: Friday, September 15, 2000 4:01 PM
=To: [EMAIL PROTECTED]
=Subject: [newbie] ipchains
=
=
=Hi,
=
=I am currently seting up ipchains with masquerading
Message -
From: Kelly
To: [EMAIL PROTECTED]
Sent: Sunday, August 06, 2000 1:06 PM
Subject: [newbie] Ipchains
Is there a way to make ipchains dial (modem) on demand?
I want to set up a server to dial and log into my isp when ever we open a browser
or email.
Thanks
With Mandrake 7.1 I see Ipchains is started with the other startup items now.
The question I have is where do the rules get put and does it get read when the
chains are loaded?
C Nielsen
, so I didn't bother with it.
--Greg
- Original Message -
From:
Kelly
To: [EMAIL PROTECTED]
Sent: Sunday, August 06, 2000 1:06
AM
Subject: [newbie] Ipchains
Is there a way to make ipchains dial (modem) on
demand?
I want to set up a server to dial and log
To: [EMAIL PROTECTED]
Sent: Sunday, August 06, 2000 1:06
PM
Subject: [newbie] Ipchains
Is there a way to make ipchains dial (modem) on
demand?
I want to set up a server to dial and log into my
isp when ever we open a browser or email.
Thanks
kelly
Visit my web siteKelly's
I just went through exactly what you are going through now. First thing to
do is check out this whoop ass page on LinuxNewbie.org
http://www.linuxnewbie.org/nhf/intel/network/ipchains2.html
The template that they give is your basic rc.firewall file and I have seen
umptine times on linux boxes
Mike Fieschko [EMAIL PROTECTED] wrote:
"Jaguar" == Jaguar [EMAIL PROTECTED] writes:
Jaguar I wrote to the list a few days ago, asking for some
Jaguar help...the _ONLY_ reply I got was, RTFM...well I have
Jaguar RTFM's till I am more confused. I wanted to know if in
"Jaguar" == Jaguar [EMAIL PROTECTED] writes:
[snip]
Jaguar yes there is a /proc/sys/net/ipv4 it has DIRS for /conf
Jaguar /neigh /route, and a buncha other files no I didn't
Jaguar compile a kernel
There are many options for IP, and experimental support for
IPv6.
"Jaguar" == Jaguar [EMAIL PROTECTED] writes:
Jaguar I wrote to the list a few days ago, asking for some
Jaguar help...the _ONLY_ reply I got was, RTFM...well I have
Jaguar RTFM's till I am more confused. I wanted to know if in
Jaguar MDK7.02, IPV4 is compiled in the default
I wrote to the list a few days ago, asking for some help...the _ONLY_ reply I
got was, RTFM...well I have RTFM's till I am more confused. I wanted to know
if in MDK7.02, IPV4 is compiled in the default install kerenl, or if I have to
recompile with IPV4 enabled???
How pucking hard is it to tell
the same!!
Hope this helps!
Bryan
Jaguar [EMAIL PROTECTED] on 03/24/2000 10:52:38 AM
Please respond to [EMAIL PROTECTED]
To: Linux Newbie [EMAIL PROTECTED]
cc:(bcc: Bryan Moorehead/Link/Allied Holdings)
Subject: [newbie] IPCHAINS/MASQ/FORWARDING
I wrote to the list a few days ago
Hello,
I'm masquerading some friends of me to get them on the internet over my
modem. I use ipchains command to make the chains. Everything works ok
except for the:
ipchains -L -v command wich returns about 20 times smaller values for
their transfers than in reality. If I have an overall bytes in
On the ipchains home page, there is an alert regarding fragmented packets
and ipchains.
I need to know if this bug affects Mandrake 6.0 (2.2.9) - as there is a
patch supplied for 2.2.10 but not 2.2.9
Any help appreciated.
James Lewis
[EMAIL PROTECTED]
I am trying only allow 10 users httpd telnet access to my company web
server(Linux-Mandrake 6.0 with Apache).
Right now the whole company has access to my web server. I tried to lock the
server down with httpd.conf, but gave up when I couldn't get it to work at
the ip level(it works no problem
Hi I have a question, How do I check to make sure my firewall is loaded
and running when I start my box up? I know this a dumb question, But
I cant think of the answer
TIA
Hugh
--
The objective of all dedicated employees should be to thoroughly
analyze all situations, anticipate all
Hugh Semmler wrote:
Well, it depends on your firewall...
If you are using ipchains, try
ipchains -L
in a console or an xterm or even as part of an initscript
also, test the file
/proc/net/sys/ipv4/ip_forward which should contain a "1"
unless you are using an interface-specific activation
I have installed LM as firewall for a company that was using NT proxy.
All IP from the private network routes out fine except they can no longer
receive exchange email from internet senders. The exchange server is on a
private IP number (192.168.0.2) behind the firewall as it was with the proxy
68 matches
Mail list logo
