search for: addrul

It seems to me that ipsecnat tunnel type is not complete. Latest drafts of ipsec nat-traversal use udp port 4500 for nat-traversal communications. (It''s called port floating). That is needed to get rid of ugly ipsec passthru devices. Now ipsecnat opens port udp/500 from any source port. And I think ipsecnat won''t work at all with gw zone defined? I''m not sure about

...9;'iptables - --help'' for more information. | | BTW, I''ve moved this off of the mailing list, feel free to put it back on there if you want. Hmmm -- the tunnels file has never accepted "!" in the GATEWAY column regardless of the tunnel type :-( Change the ''addrule()'' function (line 293 in /usr/share/shorewall/firewall) to use ''run_iptables2'' rather than ''run_iptables''. ~ addrule() # $1 = chain name, remainder of arguments specify the rule ~ { ~ ensurechain $1 ~ run_iptables2 -A $@ ~ } I''v...

Hello I have 2 models. link.rb has_many :categories, :as => :categorized validates_presence_of :name, :url, :created_at, :category category.rb belongs_to :categorized, :polymorphic => true validates_presence_of :name Everything seems to work. I select my category from a select tag. The problem is i don''t know how to validate if category is for example empty (nothing in a

Dear Experts, "this is system from the hell!" Than was my first reaction when I realized that logged in with GUI (X11) user can turn off (and on) network interfaces. Without being in sudoers file. Wow, this is scary to see on workstations I manage centrally. Even though I did consider local user to be able to execute the command "shutdown" (which distinguished RedHat and

...system). Thanks a lot for all your help! Valeri Didn't see any more ideas in this thread. The way I solved this was to use policykit. Created the file /etc/polkit-1/rules.d/20-networkmanager.rules with the following content /* require authentication to modify network settings */ polkit.addRule(function(action, subject) { if (action.id.indexOf("org.freedesktop.NetworkManager." ) == 0 ) { return polkit.Result.AUTH_ADMIN; } }); That will require someone with admin privileges to authenticate for NetworkManager actions to succeed. regards, Thomas