Displaying 20 results from an estimated 23 matches for "allowdns".
2004 Mar 25
2
Shorewall 2.0.1 RC1
Release candidate 1 is available at:
http://shorewall.net/pub/shorewall/Beta
ftp://shorewall.net/pub/shorewall/Beta
The ''releasenotes.txt'' file tells you about the release.
-Tom
PS to those of you on the Shorewall Announcement List:
Feedback to this point is overwelmingly in favor of keeping Beta and
Release Candidate announcements on this list.
I have configured the list
2005 Feb 02
6
Need help with Shorewall
I am using debian sarge. I want to block all incoming requests except
DNS (port 53) and allow all outgoing traffic. I did a apt-get
shorewall. When I start shorewall, I cannot even ping to any external
site. I am a newbie and difficult to follow the online guide. Can
anyone please help me.
Thanks !
2005 Jan 11
2
All traffic is on the same adress
...ACCEPT net $FW icmp 8
ACCEPT dmz $FW icmp 8
ACCEPT dmz net icmp 8
ACCEPT $FW loc icmp 8
ACCEPT $FW net icmp 8
ACCEPT $FW dmz icmp 8
# DNS
AllowDNS dmz:10.0.0.3 net
AllowDNS dmz:10.0.0.4 net
AllowDNS $FW dmz
# DMZ Holes
ACCEPT dmz loc:192.168.100.8 tcp 25
ACCEPT dmz loc:192.168.100.8 udp 25
ACCEPT dmz loc:192.168.100.33 tcp 1500
# IPSec
ACCEPT net:64.254.226...
2005 Feb 01
4
Shorewall problem
I am getting the following message when Shorewall stops can anybody shed
any light on this message and where I should be looking? Thanks
root@bobshost:~# shorewall stop
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Stopping Shorewall...Processing /etc/shorewall/stop ...
IP Forwarding Enabled
2005 May 31
11
More Tests for 2.4.0-RC2 - strange behaviour
...rest
+ ''['' xAllowPing = xINCLUDE '']''
+ echo ''AllowPing #Accept Ping''
+ read first rest
+ ''['' xAllowFTP = xINCLUDE '']''
+ echo ''AllowFTP #Accept FTP''
+ read first rest
+ ''['' xAllowDNS = xINCLUDE '']''
+ echo ''AllowDNS #Accept DNS''
+ read first rest
+ ''['' xAllowSSH = xINCLUDE '']''
+ echo ''AllowSSH #Accept SSH''
+ read first rest
+ ''['' xAllowWeb = xINCLUDE '']''...
2004 Oct 08
6
clean install with 3 ip addresses
i am doing a clean install on fedora
core 2 using the shorewall rpm and the
Shorewall Setup Guide for multiple
IP''s using a stock configuration except
for AllowDNS and AllowWeb on the
firewall (so i can post this message).
my shorewall status file is attached.
my setup
69.17.65.105 = firewall
69.17.65.22 = dmz server 1
69.17.65.161 = dmz server 2
my local network is 192.168.0.0/24
using IP address (no name resolution) i am
unable to browse the server...
2005 Apr 12
8
SMTP / DMZ
...inB.com[64.x.x.x]:
Connection refused)
The rules that i have set related to smtp are :
#Allow STMP connections
ACCEPT INET DMZ tcp smtp
ACCEPT LOC DMZ tcp smtp
ACCEPT fw DMZ tcp smtp
ACCEPT DMZ INET tcp smtp
and dns
#DNS access to the internet
AllowDNS INET DMZ
AllowDNS LOC DMZ
AllowDNS fw DMZ
AllowDNS DMZ INET
We are however able to send mails from the domains hosted on Mdaemon to
domainA .
I assume the data that i have given above would help you guys in getting
an idea of what i am facing.. i...
2005 Apr 19
14
allow ssh access from net to fw?
...--------------
------------------
#INTERFACE HOST(S)
eth0 -
#eth1 IP POINTERCOM
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
ROULES:
----------------------------------------------------------------------------
------------------
ACCEPT fw net tcp 53
ACCEPT fw net udp 53
AllowDNS loc fw
AllowDNS fw net
# Allow Ping To And From Firewall
#
ACCEPT loc fw icmp 8
ACCEPT net fw icmp 8
ACCEPT fw loc icmp
ACCEPT fw net icmp
#
# Accept SSH connections from the local + internet network for
administration
#
ACCEPT loc fw tcp 22
ACCEPT net fw tcp 22
#
#
# Ac...
2005 Mar 26
11
Do i need a proxy??
Goodday,
First my network layout:
dsl router (10.0.0.99)
|
server (eth0 10.0.0.1, eth1 10.0.1.10)
|
3 times windows machine (10.0.1.2, 10.0.1.3, 10.0.1.4)
(all with proxy settings 10.0.1.10:8080)
Now on the server is mandrake 10 installed with shorewall as firewall.
And a apache webserver (and no ftp server).
When i turned internet sharing on it started squid which added a line in the
2004 Jun 11
5
help with rules / log entries
...ork. Basically nothing should be allowed into
the techroom and only a limited amount of traffic is to leave the techroom.
Below are a few log entries I looking to get explained.
DHCP is handled by the firewall, DNS is handled by servers side our
techroom.
my rules file
AllowSSH all fw
AllowDNS all net:10.1.1.159,10.1.1.160
AllowFTP loc net
AllowWeb loc net
AllowPOP3 loc net
AllowSMTP loc net:172.16.35.10,172.16.35.33
AllowSMB loc net:10.1.1.159,10.1.1.160
my policy file
loc all DROP info
n...
2004 Sep 21
1
squid on DMZ using proxyarp
...-- * eth1 0.0.0.0/0
0.0.0.0/0
110 43464 fw2dmz all -- * eth2 0.0.0.0/0
0.0.0.0/0
0 0 Reject all -- * * 0.0.0.0/0
0.0.0.0/0
0 0 reject all -- * * 0.0.0.0/0
0.0.0.0/0
Chain AllowDNS (6 references)
pkts bytes target prot opt in out source
destination
2 126 ACCEPT udp -- * * 0.0.0.0/0
0.0.0.0/0 udp dpt:53
0 0 ACCEPT tcp -- * * 0.0.0.0/0
0.0.0.0/0 tcp dpt:53
C...
2005 Feb 02
1
Masq errors?
...RejectAuth...
Pre-processing /usr/share/shorewall/action.DropPing...
Pre-processing /usr/share/shorewall/action.DropDNSrep...
Pre-processing /usr/share/shorewall/action.AllowPing...
Pre-processing /usr/share/shorewall/action.AllowFTP...
Pre-processing /usr/share/shorewall/action.AllowDNS...
Pre-processing /usr/share/shorewall/action.AllowSSH...
Pre-processing /usr/share/shorewall/action.AllowWeb...
Pre-processing /usr/share/shorewall/action.AllowSMB...
Pre-processing /usr/share/shorewall/action.AllowAuth...
Pre-processing /usr/share/shorewall/action.AllowSMTP......
2004 Dec 03
1
not logging as exspected
...part.
i use shorewall 2.0.4 and for logging metalog 0.8.
the problem is that new connections of certain (most) types don''t get
logged. when i browse for example i see such:
----------------------------------------------------------------------
Dec 3 15:49:12 [kernel] Shorewall:fw2net:AllowDNS:IN= OUT=eth0
SRC=80.218.188.212 DST=62.2.24.158 LEN=59 TOS=0x00 PREC=0x00 TTL=64
ID=17070 DF PROTO=UDP SPT=32770 DPT=53 LEN=39
----------------------------------------------------------------------
but never such:
----------------------------------------------------------------------
Dec 3 15:...
2016 Aug 25
2
Documentation error
I'm alerting that the documentation found https://www.samba.org/samba/docs/man/manpages/smb.conf.5.html#ALLOWDNSUPDATES
Describes the options available for 'allow dns updates' to be 'disabled', 'secure', 'enabled' or 'nonsecure';
--DNS updates can either be disallowed completely by setting it to disabled, enabled over secure connections only by setting it to secure or...
2005 Apr 09
12
aMule
Hi!
I don;t know what i am doing wrong because i have still Low ID on aMule. I
have action.AllowaMule and accept tcp 4662:4771 and udp 4672.
Thanks,
Mitja
2005 Sep 05
2
RE: Apache Virtual Hosts Problem
Thanks all for the response to my problem. Outside interrupts made me set aside the
project temporarily.
Reading your input (one email of which was rejected by our email engine for reasons
unknown) the thinking seems to be that Apache can''t resolve its virtual hostnames. I
had not originally installed the dnsmasq module, so did that. However, there was no
difference in performance. I
2005 Jan 29
2
Problems internet sharing between mandrake 10.1 and XP
Hi
I have recently installed madrake 10.1 on my PC, i wish to connect my
laptop running XP to linux machine mainly for internet sharing.
Linux machine is connected to internet via ADSL USB modem (D Link 200).
I use eciadsl package(driver) for this modem and apparently in the
network interface it comes up as tap0 . I have network card installed
to my PC which comes up as eth0. This network card
2005 Jun 27
5
Bridging problem with Shorewall and OpenVpn
...###############
#ACTION SOURCE DEST PROTO DEST SOURCE
ORIGINAL RATE USER/
# PORT PORT(S) DEST
LIMIT GROUP
AllowPing loc fw
AllowPing fw net
RejectAuth net fw
RejectAuth fw net
AllowDNS fw net
#AllowFTP fw net
AllowWeb fw net
REJECT loc net tcp 80,443
#
# squid
ACCEPT loc fw tcp 3128
#
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
Tunnels
# TYPE ZONE GATEWAY GATEWAY ZONE
openv...
2004 Aug 30
6
Shorewall upgrade messed up my firewall
...RejectAuth...
Pre-processing /usr/share/shorewall/action.DropPing...
Pre-processing /usr/share/shorewall/action.DropDNSrep...
Pre-processing /usr/share/shorewall/action.AllowPing...
Pre-processing /usr/share/shorewall/action.AllowFTP...
Pre-processing /usr/share/shorewall/action.AllowDNS...
Pre-processing /usr/share/shorewall/action.AllowSSH...
Pre-processing /usr/share/shorewall/action.AllowWeb...
Pre-processing /usr/share/shorewall/action.AllowSMB...
Pre-processing /usr/share/shorewall/action.AllowAuth...
Pre-processing /usr/share/shorewall/action.AllowSMTP......
2004 Sep 13
5
Config problems
...tion.RejectAuth...
Pre-processing
/usr/share/shorewall/action.DropPing...
Pre-processing
/usr/share/shorewall/action.DropDNSrep...
Pre-processing
/usr/share/shorewall/action.AllowPing...
Pre-processing
/usr/share/shorewall/action.AllowFTP...
Pre-processing
/usr/share/shorewall/action.AllowDNS...
Pre-processing
/usr/share/shorewall/action.AllowSSH...
Pre-processing
/usr/share/shorewall/action.AllowWeb...
Pre-processing
/usr/share/shorewall/action.AllowSMB...
Pre-processing
/usr/share/shorewall/action.AllowAuth...
Pre-processing
/usr/share/shorewall/action.AllowSMTP...
P...