: Friday, February 20, 2015 3:11 AM
To: Shorewall Users
Subject: Re: [Shorewall-users] IP Info in Shorewall vs. Info in Spiceworks
Donald S. Doyle dsdo...@gemcc.com wrote:
I am using Shorewall and Spiceworks. They are on two different servers.
Spiceworks will send me a message that the router
Hi Simon,
What is IDS?
-Original Message-
From: Simon Hobson [mailto:li...@thehobsons.co.uk]
Sent: Friday, February 20, 2015 11:25 AM
To: Shorewall Users
Subject: Re: [Shorewall-users] IP Info in Shorewall vs. Info in Spiceworks
On 20 Feb 2015, at 16:00, Donald S. Doyle dsdo
Hello,
I am using Shorewall and Spiceworks. They are on two different servers.
Spiceworks will send me a message that the router or a server on the network is
communicating with a sus[icious IP address which I have blacklisted in
Shorewall. I asked Spiceworks about this and they sent to
-be admins.
But thats only my 2cents worth
Holger
Am 08.02.2014 um 01:34 schrieb Donald S. Doyle:
Hello,
It appears that apps are getting installed on the router without my knowing.
Supposedly, Citrix, Teamviewer ZOHO have been installed although I cannot
find any evidence
, 2014 at 03:51:38PM +, Donald S. Doyle wrote:
This is being done via the Internet and I do not know who it is.
Have a great weekend,
Don
Don,
If you are having apps installed on your system via the Internet and you don't
know about it, you may have been rooted. I would consider taking
-users@lists.sourceforge.net
Subject: Re: [Shorewall-users] Blacklist/Block Apps
On Sat, Feb 08, 2014 at 04:31:13PM +, Donald S. Doyle wrote:
How do I prevent being rooted?
That question is exceptionally difficult to answer. It depends on many
different things.
First, you can block all
Hello,
Is there a way to be proactive and block questionable IP addresses before they
attempt to communicate with my router?
Have a great day,
Don
--
Managing the Performance of Cloud-Based Applications
Take advantage
] Blocking IP addresses
On Fri, Feb 07, 2014 at 10:31:59PM +, Donald S. Doyle wrote:
Hello,
Is there a way to be proactive and block questionable IP addresses before
they attempt to communicate with my router?
Hi Don,
Depending on your definition of questionable, you can
Hello,
It appears that apps are getting installed on the router without my knowing.
Supposedly, Citrix, Teamviewer ZOHO have been installed although I cannot
find any evidence of it. Is there a way to blacklist/block apps from being
installed?
Have a great day,
Don
. I poked
around the FAQs, but could not find anything that addressed my issue (at
least I could not find it).
Any ideas? Thanks in advance.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
http://www.gemcc.com www.gemcc.com
http
Shouldn't it be HTTP/ACCEPT? If I do ACCEPT/HTTP, Shorewall crashes.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic transmission are private and
confidential
Do I still have the des port as 80 even though I have HTTP(ACCEPT)?
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic transmission are private and
confidential
Hello,
Let's try this again. Compressed version of the trace file.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
http://www.gemcc.com/ gem-logo
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic
Hi Tom,
Why didn't I think of that! Thank you very much!
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic transmission are private and
confidential and are the properties
Hello,
I have a DNAT rule to a Linux server and that is working great! I have
another DNAT rule to a Server 2008 system and I am not getting through. Now
what the heck am I doing wrong?
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
http
will to server E
and j...@abc.com goes to server F? If any of this is possible, what is the
name of the technology/technique?
Thank you for your input/help.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
http://www.gemcc.com www.gemcc.com
http
Hi Roberto,
Thanks for the follow-up! Do you have a latin background? My wife is from
Venezuela.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic transmission
Hi Tom,
I followed them you pointed me in that direction. I did not make any
changes, but now it works!
Thanks for your help.
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed
Unavailable.
If I change from REJECT to ACCEPT, I can then ping out. What am I missing
so I can ping out and eventually browse the Internet? Thank you very much
for your help!
Have a great day,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
http://www.gemcc.com
Hello,
I apologize, I believe the first file I attached does not reflect when wan
FIREWALL is set to DROP. The one that is now attached does.
Have a great weekend,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com http://www.gemcc.com/
http
Hi Tom,
I try /sbin/shorewall dump /tmp/shorewall_dump.txt and I am getting an
error message LOGFILE (/var/log/messages) does not exist!
I look in the sbin directory and see the shorewall file.
I am using port 1 for SSH and 10001 to access Webmin
Have a great weekend,
Donald S. Doyle
That was the problem! I needed to set dest. ports, not source! Thanks for
your help!
Have a great weekend,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY NOTICE
The materials enclosed with this electronic transmission are private
1. Shorewall v4.5.5.3 Kernel v3.5.0-25-generic
2. I did do the patch, did not help. I removed it.
3. I do not have /proc/net/nf_conntrack or /proc/net/ip_conntrack
Have a great weekend,
Donald S. Doyle
President
G.E.M. Computer Consulting, LLC
317.250.4448
www.gemcc.com
CONFIDENTIALITY
23 matches
Mail list logo