gt;
>
>
> On 09/14/2016 06:38 AM, Hristo Benev wrote:
> > Here is it...
> >
> > ftp://ftp.shorewall.net/pub/shorewall/5.0/shorewall-5.0.12-/
> >
> >
>
> For Betas, you should be looking in
> ftp://ftp.shorewall.net
3.09.2016 18:43
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
>
>
> On 09/13/2016 05:03 AM, Hristo Benev wrote:
> > Just to report...
> >
> > in ftp folder "beta" is missing in folder name it is
> > shorewall-5.
when checking config I get:
shorewall check
Checking using Shorewall 5.0.7.1...
Found = in conditional, should be == at /usr/share/perl5/Shorewall/Chains.pm
line 8630.
Found = in conditional, should be == at /usr/share/perl5/Shorewall/Chains.pm
line 8635.
.
Probably a typo?
Thanks
Hristo
Hi,
I'm trying to get list of IPs under a variable(zone).
I thinking to use hosts and zone.
Is that best way or there is another one?
Goal is to allow access on some ports for geo distributed monitoring system
(multiple single IPs).
Thanks,
Hristo
Оригинално писмо
От: Hristo Benev f...@abv.bg
Относно: [Shorewall-users] canada.shorewall.net FTP server temprary offline
До: Shorewall Users shorewall-users@lists.sourceforge.net
Изпратено на: 10.04.2015 16:41
Hi List,
FTP server on canada.shorewall.net
Hi,
Canada mirror http://canada.shorewall.net is switched from apache to ngnix.
Please, let me know in case of issues.
Many thanks to Tom for his help.
Hristo
--
Dive into the World of Parallel Programming The
shorewall-4.6.4-beta1 does not contain any files.
I did try to sync manually but no updates.
Hope it is just an typo in a script somewhere.
Thanks
Hristo
--
Meet PCI DSS 3.0 Compliance Requirements with EventLog
Изпратено на: Сряда, 2014, Септември 24 17:50:27 EEST
On 9/24/2014 7:17 AM, Hristo Benev wrote:
shorewall-4.6.4-beta1 does not contain any files.
I did try to sync manually but no updates.
Hope it is just an typo in a script somewhere.
Check
http
на: Сряда, 2014, Април 30 19:38:43 EEST
On 4/29/2014 2:07 PM, Hristo Benev wrote:
Hi,
It might be a bit offtopic...
My conntrack table is filling from time to time.
Any suggestions how to find what is the cause?
The cause is that you have more active
Found conntrack-tools
No question is how to configure certain rules so they are not tracked.
Obvious option is:
#SECTION UNTRACKED
But is my assumption correct?
Currently my rules are under SECTION NEW
Hristo
Оригинално писмо
От: Hristo Benev f...@abv.bg
Относно
Hi,
It might be a bit offtopic...
My conntrack table is filling from time to time.
Any suggestions how to find what is the cause?
Thanks
Hristo
--
Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
After updating from generic RPMs on CentOS 6 I received following warning.
Updating : shorewall-init-4.5.21-8.noarch
3/8
WARNING: /sbin/ifup-local and/or /sbin/ifdown-local
Оригинално писмо
От: Øyvind Lode oyv...@lode.is
Относно: [Shorewall-users] PROTO=255 What?
До: Shorewall Users shorewall-users@lists.sourceforge.net
Изпратено на: Вторник, 2014, Февруари 25 15:36:32 EET
Hi all:
Sorry for my ignorance but I don't understand
shorewall-4.5.21-1 is in the repository.
Had to fix a bug in repo creation script.
Hopefully on next release will be more automatic.
As remainder repo is located at: http://mirror.sysadminguide.net/shorewall/
and instruction on how to configure:
Hi,
anyone interested in Shorewall Yum repo?
I did create first iteration.
Instructions on how to setup:
http://www.sysadminguide.net/shorewall-yum-repository/
Consider it BETA.
-
Подарете едно незабравимо изживяване за 29 лв.
/2013 4:29 PM, Hristo Benev wrote:
Interesting
IN=eth0 OUT=eth0
It should be venet0 since ip2 is on VPS
/etc/shorewall/interfaces:dmz $VPS_IF detect
logmartians=0,routefilter=0,nets=(ip2,ip3,ip4),routeback
/etc/shorewall/params:VPS_IF=venet0
Hi,
In log I get:
---
Sep 30 16:19:03 host kernel: Shorewall:FORWARD:REJECT:IN=eth0 OUT=eth0 SRC=ip1
DST=ip2 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=27279 DF PROTO=TCP SPT=51501
DPT=25 WINDOW=8192 RES=0x00 SYN URGP=0
писмо
От: Tom Eastep teas...@shorewall.net
Относно: Re: [Shorewall-users] strange problem
До: shorewall-users@lists.sourceforge.net
Изпратено на: Вторник, 2013, Октомври 1 00:03:07 EEST
On 9/30/2013 1:30 PM, Hristo Benev wrote:
Hi,
In log I get
Problem is caused by following permission -rwxr-x---
it should be -rw-r--r-- instead.
I did fix it temporary on canada.shorewall.net, but it has to be fixed on
master.
http://canada.shorewall.net/pub/shorewall/4.5/shorewall-4.5.20/
Оригинално писмо
От: Simon Matter
It looks as problem in 4.5.20 folder only.
http://canada.shorewall.net/pub/shorewall/4.5/shorewall-4.5.20/releasenotes.txt
Forbidden
You don't have permission to access
/pub/shorewall/4.5/shorewall-4.5.20/releasenotes.txt
on this server.
Apache Server at canada.shorewall.net Port 80
Same on
Оригинално писмо
От: Duarte Fernandes Rocha d...@eurotux.com
Относно: Re: [Shorewall-users] open port from script
До: shorewall-users@lists.sourceforge.net
Изпратено на: Петък, 2012, Октомври 19 13:10:09 EEST
p, li { white-space: pre-wrap; } ;
Оригинално писмо
От: Florian Piekert flo...@floppy.org
Относно: Re: [Shorewall-users] open port from script
До: Shorewall Users shorewall-users@lists.sourceforge.net
Изпратено на: Петък, 2012, Октомври 19 08:59:57 EEST
Am 19.10.2012 05:57, schrieb Hristo Benev
Hi,
I have following situation. I have client box that is behind dynamic IP. And I
would like to open specific port only for that client IP.
Every time IP changes I have to reconfigure firewall (Shorewall) and server
application.
Is there a way to open port from script?
My initial idea is to
When Shorewall refreshes the config I get following in the log..
kernel: ip_tables: MARK target: only valid in mangle table, not filter
logger: Shorewall refreshed
Is that something I should worry about?
Thanks
P.S.
shorewall version
4.5.0.2
Hello,
Is it possible to create list of IPs and apply rules on them?
Just an example:
I have 2 IP ranges
192.168.2.0/24
192.168.3.0/24
If it is possible to create a list (for example) LAN
And after that I can create rule
allow LAN PUB
To allow all LAN access to PUB (public Internet)
Оригинално писмо
От: Tom Eastep [EMAIL PROTECTED]
Относно: Re: [Shorewall-users] Shorewall and xen
До: Shorewall Users shorewall-users@lists.sourceforge.net
Изпратено на: Понеделник, 2008, Март 24 04:16:58 EET
--
Hristo Benev wrote
This is not my first setup of Shorewall, but first involving XEN
Trying to implement FW at routed Dom0.
I did not find similar problem in the FAQ or mailing list, but if somebody
knows similar thread let me know.
My setup is following
ISP--non routed--(eth0)x.x.x.173 FW--LAN(eth1)10.10.0.2
mess-mate wrote:
Hi,
at every boot i've this shorewall output log:
kernel: Shorewall:loc2all:REJECT:IN=eth0 OUT= MAC= SRC=192.168.10.6
DST=224.0.0.251 LEN=229 TOS=0x00 PREC=0x00 TTL=255 ID=0 DF PROTO=UDP
SPT=5353 DPT=5353 LEN=209
SRC is the address of this machine.
Thanks in advance
Tom Eastep wrote:
Michael Mansour wrote:
Hi,
I'm using shorewall 2.4.9 running on Scientific Linux 4.4 (RHEL 4 Update 4).
I'd like to start counting the bandwidth they are using, whether that be for
subnets or IP's on their dedicated servers.
Can shorewall do this? if so, how? will I
Tom Eastep wrote:
Hristo Benev wrote:
According to the document if I want to do accounting by IP and I have
/24 network I need to have 253(4) rules.
Yes -- in which case, you probably want to use another accounting method
besides Shorewall.
-Tom
10M and keep one DSL as backup.
Probably the price tag will not change much.
--
Hristo Benev
IT Manager
WAVEROAD
Partners in Telecommunications
514-935-2020 x225 T
514-935-1001 F
www.waveroad.ca
[EMAIL PROTECTED]
-
Take
Hi,
I've read the documentation and I'm aware that automatic FOver is not
possible.
So for me will be preferable to create a script checking i-net and
changing default route.
But will this break Shorewall?
I'm using v 3.2.0.
I have ADSL connection ppp0 and a friend with Cable I-net (willing
Tom Eastep wrote:
Hristo Benev wrote:
Hi,
I've read the documentation and I'm aware that automatic FOver is not
possible.
So for me will be preferable to create a script checking i-net and
changing default route.
But will this break Shorewall?
I'm using v 3.2.0.
I have ADSL
33 matches
Mail list logo