Displaying 5 results from an estimated 5 matches for "packetfiltering".
2019 Sep 21
2
Privacy Extension not working in VM
...A via RA and SLAAC (2003::/3)
- IPv4 works fine in the VM
- IPv6 (NDP, RA, SLAAC) works basically also fine in the VM
The existing problem in the VM:
- MAC-Based GUA (2000::/3) is ok, both inbound and outbound
- Outbound traffic via the second GUA (PE-Based) is filtered apparently,
but not via packetfiltering, I don't know where. There are no error
messages. On the part of the kernel in the VM and the IPv6-stack,
everything looks completely ok, no error messages, except that
Outbound-Traffic by the PE-Address is quietly blocked. The MAC-
Based IPv6 works unchanged and without error as be...
2004 Oct 15
1
mark & owner for local connections
Hi,
Host A has two interfaces: eth0, tap0.
I want that all locally generated traffic from user 1004 goes through
tap0.
This is what I did:
iptables -A OUTPUT -t mangle -m owner --uid-owner 1004 -j MARK --set-mark 2
echo 202 bigmac.out >> /etc/iproute2/rt_tables
ip rule add fwmark 2 table bigmac.out
ip route add default via 10.0.0.1 dev tap0 table bigmac.out
ip route flush cache
2000 Oct 11
2
scp -L option
Hi there,
I have a need to have scp pass the -P option to ssh
to "bypass" the packetfilters that doesn't allow connections
to return to arbitary "priviledged" ports, ie. ports <1024.
See attached context sensitive diffs against 2.2.0p1
to please integrate.
Thanx
Hendrik Visage
-------------- next part --------------
*** 1.1 2000/10/11 13:31:45
--- scp.c 2000/10/11
2019 Sep 23
0
Re: Privacy Extension not working in VM
...v4 works fine in the VM
> - IPv6 (NDP, RA, SLAAC) works basically also fine in the VM
>
> The existing problem in the VM:
> - MAC-Based GUA (2000::/3) is ok, both inbound and outbound
>
> - Outbound traffic via the second GUA (PE-Based) is filtered apparently,
> but not via packetfiltering, I don't know where. There are no error
> messages. On the part of the kernel in the VM and the IPv6-stack,
> everything looks completely ok, no error messages, except that
> Outbound-Traffic by the PE-Address is quietly blocked. The MAC-
> Based IPv6 works unchanged and wit...
2006 May 04
3
Jails and loopback interfaces
> I recently did something like this. I have a webserver in a jail that
> needs to talk to a database, and the webserver is the only thing that
> should talk to the databse.
> My solution was to use 2 jails: one for the webserver, and another for the
> database.
> Jail 1:
> * runs webserver
> * binds to real interface with real, routable IP
> Jail 2:
> *