Displaying 13 results from an estimated 13 matches for "shorewall_extension_script".
Did you mean:
shorewall_extension_scripts
2005 May 12
12
New Article at Shorewall.net
This article describes how to implement "Port Knocking" in Shorewall.
http://shorewall.net/PortKnocking.html
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
2003 Aug 19
7
[Fwd: Re: Shorewall 1.4.6: common chain rules are applied before policyrules?]
Thank you for your support.
The next question: Is there a kind of common chain applied before
ACCEPT policy? I want to DROP or REJECT Netbios traffic on most
interfaces but do not want to repeat those rules in the rules file.
Thanks,
Boi
-----Th?ng ?i?p chuy?n ti?p-----
> From: Tom Eastep <tmeastep@hotmail.com>
> To: Le.Hong.Boi@sg.netnam.vn
> Subject: Re: Shorewall 1.4.6: common
2003 Jul 23
3
How to Log "Related" Traffic?
Hello!
We''re using Shorewall 1.4.2 and running into an interesting problem when
we try to enable logging of traffic that netfilter classifies as
"related" to an existing connection: there doesn''t seem to be a way to
do it. Places where we''ve run into this problem are:
(1) Attempting to log individual active or passive FTP data connections
separately from
2004 Nov 01
2
does shorewall support more advance features of netfilter ?
e.g.
string-matching
CodeRed or Nimda viruses before they hit your Web server. The
following rules achieve this:
# DROP HTTP packets related to CodeRed and Nimda
# viruses silently
iptables -t filter -A INPUT -i $EXT_IFACE -p tcp \
-d $IP --dport http -m string \
--string "/default.ida?" -j DROP
iptables -t filter -A INPUT -i $EXT_IFACE -p tcp \
-d $IP --dport http -m string \
2008 Nov 13
3
Does code in /etc/shorewall/start exec before or after Shorewall starts?
In the docs at http://www.shorewall.net/Shorewall-perl.html,
"Your ipsets must be loaded before Shorewall starts. You are free to
try to do that with the following code in /etc/shorewall/start"
implies that code in /etc/shorewall/start is executed BEFORE Shorewall starts.
In the default /etc/shorewall/start
# /etc/shorewall/start
#
# Add commands below that you want to be
2004 Sep 08
6
netfilter modules
hi,
there is no support for patch-o-matic netfilter modules. what i have to do
if i want to use several patch-o-matic modules?
which parts of code has to be changed and will that changed be included
into the main shorewall tree in future or not?
best regards
claus
2012 Jan 31
6
Shorewall and sshdfilter
Hi All!
Been quite a few years and lots of water under the bridge but here I am back!
I have a customer that has now decided they need a bit more bandwidth over and
above their fixed line! They are not in a good area for ADSL because of copper
theft and being a bit to far from the closest DSLAM! They have installed a
wireless link and I have made certain that put it behind my simple iptables
2002 Sep 10
2
Traceroute
How do I allow traceroute to reach my server? Pings work fine but
traceroute stops at the last hop before my server. If I shut off the
firewall it reaches it fine.
PING danicar.net (24.222.246.120): 56 data bytes
64 bytes from 24.222.246.120: icmp_seq=0 ttl=237 time=104.0 ms
64 bytes from 24.222.246.120: icmp_seq=1 ttl=237 time=74.9 ms
64 bytes from 24.222.246.120: icmp_seq=2 ttl=237 time=90.6
2004 Jul 16
1
Hosting Starcraft games
First let me say that I am not subscribed to the list, so please
send me a copy of any replies.
I have been using Shorewall for years as the firewall for my LAN.
It has been awhile since I played Starcraft and hosted games.
Back then I was using the 2.2 kernel with the loose_udp patch and
no firewall. All worked fine.
I stopped playing Starcraft a while back and later upgraded my
kernel to 2.6
2008 Mar 28
1
Re: rfc1918
...on about 'init' file i found only in
>> releasenotes.txt for 4.1.6 (for setting up 'ifb' module) and i found
>> 'initdone' file in Shorewall config directory and without manfile also.
>> For me not very clearly as it use.
>
> http://www.shorewall.net/shorewall_extension_scripts.htm
On this page i found a little dissonance between description list of
scripts at the begin and table for Shorewall-perl:
- script 'init' there is in list but absent in table;
- script 'tcclear' there is in table but absent in list;
Alex
----
Я тут! Найд...
2005 May 21
10
pb with iptables snat script
hi list,
oh it''s not really a problem.
Each time i fire shorewall, i run a custom iptables script:
(for the openvpn machines to have route back from my bridge/fw -
$SOURCEIP is the ip of my OpenVPN/Fw/bridge)
iptables -A POSTROUTING -t nat -s 10.8.0.0/16 -j SNAT --to-source
$SOURCEIP
i wish to better integrate it within shorewall, so is there any config
files that could achieve the
2002 Nov 11
11
Shorewall Documentation in PDF format
Hey gang,
I was wondering if all that documentation could or has been put into
PDF format. I usually like to download documentation and read it while
I''m sitting comfortably at home and I don''t want to tie up the phone
line all night.
Thanks,
Nino
p.s. If so, please feel free to attach the PDF formatted document to my
e-mail ;-)
2005 May 26
3
Updated Shorewall build and publish scripts
...CorpNetwork.htm
dhcp.htm
Documentation.htm
errata.htm
fallback.htm
FAQ.htm
GnuCopyright.htm
Install.htm
IPIP.htm
IPSEC.htm
kernel.htm
myfiles.htm
NAT.htm
ports.htm
PPTP.htm
ProxyARP.htm
quotes.htm
samba.htm
shorewall_extension_scripts.htm
shorewall_features.htm
shorewall_mirrors.htm
shorewall_prerequisites.htm
shorewall_quickstart_guide.htm
shorewall_setup_guide_fr.htm
shorewall_setup_guide.htm
Shorewall_sfindex_frame.htm
standalone.htm
starting_and_stopping_shorewall.htm
suppor...