Displaying 5 results from an estimated 5 matches for "addrul".
Did you mean:
addrule
2003 Jan 06
3
ipsec nat-traversal
It seems to me that ipsecnat tunnel type is not complete.
Latest drafts of ipsec nat-traversal use udp port 4500 for nat-traversal
communications. (It''s called port floating). That is needed to get rid
of ugly ipsec passthru devices.
Now ipsecnat opens port udp/500 from any source port.
And I think ipsecnat won''t work at all with gw zone defined? I''m not
sure about
2004 Sep 25
0
Re: help with a W2K VPN client 619 error and PPTPserver
...9;'iptables
- --help'' for more information.
|
| BTW, I''ve moved this off of the mailing list, feel free to put it back
on there if you want.
Hmmm -- the tunnels file has never accepted "!" in the GATEWAY column
regardless of the tunnel type :-(
Change the ''addrule()'' function (line 293 in
/usr/share/shorewall/firewall) to use ''run_iptables2'' rather than
''run_iptables''.
~ addrule() # $1 = chain name, remainder of arguments specify the rule
~ {
~ ensurechain $1
~ run_iptables2 -A $@
~ }
I''v...
2007 Jun 18
4
polymorphic validation
Hello
I have 2 models.
link.rb
has_many :categories, :as => :categorized
validates_presence_of :name, :url, :created_at, :category
category.rb
belongs_to :categorized, :polymorphic => true
validates_presence_of :name
Everything seems to work. I select my category from a select tag. The
problem is i don''t know how to validate if category is for example empty
(nothing in a
2017 Sep 21
6
prevent users from fiddling with network?
Dear Experts,
"this is system from the hell!"
Than was my first reaction when I realized that logged in with GUI (X11)
user can turn off (and on) network interfaces. Without being in sudoers
file. Wow, this is scary to see on workstations I manage centrally. Even
though I did consider local user to be able to execute the command
"shutdown" (which distinguished RedHat and
2017 Oct 01
0
prevent users from fiddling with network?
...system).
Thanks a lot for all your help!
Valeri
Didn't see any more ideas in this thread.
The way I solved this was to use policykit.
Created the file /etc/polkit-1/rules.d/20-networkmanager.rules with the following content
/* require authentication to modify network settings */
polkit.addRule(function(action, subject) {
if (action.id.indexOf("org.freedesktop.NetworkManager." ) == 0 ) {
return polkit.Result.AUTH_ADMIN;
}
});
That will require someone with admin privileges to authenticate for NetworkManager
actions to succeed.
regards,
Thomas