iptables/netfilter for the 2.4 linux kernel series has some unsolved
(yet) problems. Suggest you to take a look at the OpenBSD's Packet
Filter and/or FreeBSD IPFilter. Both easier and more powerfull.
What unresolved problems are you referring to?
While I'll agree that IPFilter is more
monk wrote:
No flames, please... But a question. I have used ipchains for quite
some time, but have never used iptables(just started to dig in
today). I read somewhere that iptables in not actually stateful,
that it just looks at some specifics of the packet, but that is it.
I am a
- simply, you have more control.
Check this
http://netfilter.samba.org/unreliable-guides/packet-filtering-HOWTO/index.ht
ml as a quick and dirty
-Burton
-Original Message-
From: monk [mailto:[EMAIL PROTECTED]]
Sent: Monday, March 04, 2002 1:15 PM
To: [EMAIL PROTECTED]
Subject: Re: Help
Well, that is a hard one How we define what is stateful ?
It all depends on the definition
In my point of view, it matchs states How it does it is another
matter entirely
But maybe thats just me being naive
On Mon, Mar 04, 2002 at 11:14:36AM -0800, monk wrote:
No flames, please But a question
: Help with ipchains
Can anyone recommend a good resource for
ipchains, ( Very thorough and low level ) for someone
who is just learning to use it ? Meaning an
in-depth resource, all switches, arguments etc.. ??
With some good examples ? I am having a little
difficulty finding one
IPCHAINS are getting old, you should try iptables. You can get them from here
http://www.iptables.org/
At 07:42 PM 2/21/2002 +, Chad wrote:
Can anyone recommend a good resource for
ipchains, ( Very thorough and low level ) for someone
who is just learning to use it ? Meaning an
PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, February 22, 2002 9:17 PM
Subject: Re: Help with ipchains
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
There's a book called Linux Firewalls but I can't remember the author.
There you can find the most commons topologies (including a stand-alone
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
There's a book called Linux Firewalls but I can't remember the author.
There you can find the most commons topologies (including a stand-alone
machine) and uses ipchains syntax only. So at the beggining it explains you
the most common switches and
Can anyone recommend a good resource for
ipchains, ( Very thorough and low level ) for someone
who is just learning to use it ? Meaning an
in-depth resource, all switches, arguments etc.. ??
With some good examples ? I am having a little
difficulty finding one.
Thanks.
Chad
On Wed, 20 Feb 2002, Victor Usjanov wrote:
I agree with you, but we use NIS domain and NFS for mounting of user home
areas .. So that i why i am running NFS- to get my home area when i log on
other computers over here.
Do you have the resources to put the users who are mounting NFS home
Victor,
If you are initiating the applications from the box that has the
ipchains on it, add a rule like this:
ipchains -A input -s 0/0 -d 0/0 -p tcp ! -y -j ACCEPT
This allows connections that you *initiated* from the box to accept part
#2 of the three-way tcp handshake, to establish the
Hi,
the best way to solve your pb is to open your firewall, and to log NFS/samba traffic
generated for this case. (option -l, I guess). So, you will see which kind of ports
are used.
In my mind, you will have to open ports 137,138 139 for udp (and tcp ?) for netbios
traffic.
But check
Hi, Victor !!!
I'm not an expert but I've got a stand-alone machine running ipchains. I've
opened the ports 137, 138 y 139 for TCP and UDP. I think you should open them
but only for those machines you want to use SAMBA. I think you're trying to act
as a client so this is the actual state of my
On Sunday 17 February 2002 02:01 pm, Victor Usjanov wrote:
Hello
I am trying to run ipchains firewall on my computer connected to corporate
nettwork. I created a set of rules that let web and mail and ssh traffic in
and out, and it works just fine. But i got a problem with NFS and samba
link.
I started my ipchains learning with TrinityOS by David Ranch
http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html
-Original Message-
From: Victor Usjanov [mailto:[EMAIL PROTECTED]]
Sent: Sunday, February 17, 2002 2:02 PM
To: [EMAIL PROTECTED]
Subject: Help
Hello
I am trying to run ipchains firewall on my computer connected to corporate
nettwork. I created a set of rules that let web and mail and ssh traffic in
and out, and it works just fine. But i got a problem with NFS and samba
traffic. I did not manage to get it running until i placed -A input
16 matches
Mail list logo