shorewall startup fail
also, and you also make DNS-spoofing attacks during shorewall startup
useless.
roman
PS: I have a cron job running that checks the DNS of relevant IPs every
day and sends me notification about changes. Then I check and if seems
ok, take the new IP
Thank you very much
Tom Eastep wrote:
DI Roman Fiedler wrote:
Any ideas for workarounds?
No. Shorewall does filtering in the 'filter' table which, as you have
noted, is traversed after the packets have been routed.
-Tom
Is there any way to push the packet back to the start? I noticed
Tom Eastep wrote:
DI Roman Fiedler wrote:
Tom Eastep wrote:
DI Roman Fiedler wrote:
Any ideas for workarounds?
No. Shorewall does filtering in the 'filter' table which, as you have
noted, is traversed after the packets have been routed.
-Tom
no real connection intercept is possible.
Any ideas for workarounds?
greets, Roman
-
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http
Ziga Milek wrote:
As a matter of fact i thought of the unusual port choice causing the problem
and switched the ftp port back to 21 and added 'FTP/DNAT all
loc:192.168.0.3' rule and the problem persists. Any other idea?
After shorewall start do an iptables-save file
and look if rules are
Hi everyone,
I'm trying to setup a host with two shorewall configs,
/etc/shorewall/active and /etc/shorewall/passive
When I call
/sbin/shorewall check /etc/shorewall/active
I get
/etc/shorewall/shorewall.conf does not exist!
The same for:
/sbin/shorewall -vv restart /etc/shorewall/active
, which is a little unexpected. You
have to use
# /sbin/shorewall -c /etc/shorewall/passive version
3.2.6
On Wed, Aug 29, 2007 at 09:34:51AM +0200, DI Roman Fiedler wrote:
Hi everyone,
I'm trying to setup a host with two shorewall configs,
/etc/shorewall/active and /etc/shorewall/passive
have to configure them only once for
each network. The question is: Is it possible to push configurations in both
directions?
I did some tests of my own but as of now I didn't get it to work...
greets
Roman
-
Take Surveys
tun2
192.168.202.0 192.168.202.2 255.255.255.0 UG0 00 tun0
loopback* 255.0.0.0 U 0 00 lo
default 172.25.46.230.0.0.0 UG0 00 ppp0
thanks in advance for any help provided
greets
roman
it with
just one tunnel, though I think it should work with two too.
I made a little sketch of the network layout as it is currently set up. It's
attached as PNG.
Roman
netzwerklayout.png
Description: PNG image
-
Take Surveys. Earn
10 matches
Mail list logo