search for: starting_and_stopping_shorewall

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi!, I''d like to know how to set up shorewall to deny a user-defined action in a time-based basis, for example, I have a group of users using MSN, AOL, www and https, in a defined action called action.BasicAccess now, I want this access to be enabled only on lunch time from Monday through Friday and weekends from noon to 6pm... I know

Hello, is it possible to configure Shorewall for different network environments? I am using it on a single Linux computer. When I am at home, I am using an internal IP address (192.168.0.X), and when I am using my cable modem, I get an internet IP assigned. I now want to be able to use Samba/Windows Filesharing when at home and to disable it when I am using my computer directly on the net.

Tom, I was upgrading a remote firewall, when upon restart, shorewall found a rule with a wrong zone and decided to not continue and stop itself. The problem now, is I cannot access that firewall over ssh anymore. One suggestion would be to instead of "shorewall stop" to have a basic emergency rule with only ACCEPT:info all all tcp ssh rule instead with DROP all policy. Shorewall could

good day to you i have compiled evertything related to ip tables as modules, but still i get this error when trying to use /etc/shorewall/routes can someone tell me the spicific module i need to have? here are my info intranet linux # shorewall version 2.4.2 intranet linux # uname -a Linux intranet 2.6.12-gentoo-r10 #10 SMP Sun Sep 11 15:01:49 SAST 2005 i686 AMD Athlon(tm) XP 2400+

....net/Introduction.html http://www.shorewall.net/three-interface.htm http://www.shorewall.net/GettingStarted.html http://www.shorewall.net/shorewall_quickstart_guide.htm http://www.shorewall.net/shorewall_setup_guide.htm http://www.shorewall.net/configuration_file_basics.htm http://www.shorewall.net/starting_and_stopping_shorewall.htm http://www.shorewall.net/Documentation_Index.html http://www.shorewall.net/ipsets.html http://www.shorewall.net/manpages/shorewall-exclusion.html http://www.shorewall.net/manpages/shorewall-ipsets.html Also after reading documentation it is not clear to me what''s the best place and h...

Hello I am looking for a way to have snort to dynamically update my shorewall config. I have seen software out there but I would like to see if anyone had tried this first. Aslo I would like to know if there is a way clear the Netfilter tables when I do a shorewall restart. The reason being is that when I make a change to my firewall setting I want all connections to have to re-establish

I have an internet router powered by gentoo+shorewall2.0.7+adsl(pppoe) but my clients(and gateway) cant access some websites----these sites must be okay,other sites are okay. The I believe it is caused by MTU or MSS, but I have no idea yet. Btw, the unaccessable sites are dynamic, it says: today I cant access www.oracle.com nextday I redail--to get another ip,I can access www.oracle.com. Help!

Hi I know I still need to learn a lot about firewalls so if I''ve missed some doc I should have read don''t hesitate to point it out to me. I have set up shorewall on my desktop and my laptop and everything appears to be working fine but now I''d like to allow certain services (like shh, rsync, unison, http) between these two PC''s. My LAN looks like this:

Hello, Could someone with the requisite shorewall expertise please help me? Here is a description of my problem. I dial in to my ISP using kppp. It seems to establish a connection just fine. However, only a handful of bytes are exchanged. I must then become ''root'' and issue ''shorewall start'' in order to get the Internet connection to work normally. Once

Hey gang, I was wondering if all that documentation could or has been put into PDF format. I usually like to download documentation and read it while I''m sitting comfortably at home and I don''t want to tie up the phone line all night. Thanks, Nino p.s. If so, please feel free to attach the PDF formatted document to my e-mail ;-)

Hi, I am having a problem in configuring my machine to use shorewall. Here is my setup Operating System : Mandrake Network Firewall Linux based on Mandrake Linux 8.2 Network Connection : eth0 Connecting to my internal LAN with IP 192.168.1.9 eth1 Connecting to my cable modem with a static IP address 202.88.191.31 When i start with shorewall not configured to

hi, is there any reason why there is no such thing as ADD_DNAT_ALIASES in shorewall.conf or in rules (or am i just missed it)? i think about it like in masq file if the masquaraded outgoing interface is different from the default firewall intyerface than i can use ip:<digit> where the digit is the alias number. since dnat is in the rules it can be used from there. eg: if would like to dnat

...samba.htm shorewall_extension_scripts.htm shorewall_features.htm shorewall_mirrors.htm shorewall_prerequisites.htm shorewall_quickstart_guide.htm shorewall_setup_guide_fr.htm shorewall_setup_guide.htm Shorewall_sfindex_frame.htm standalone.htm starting_and_stopping_shorewall.htm support.htm three-interface.htm traffic_shaping.htm troubleshoot.htm two-interface.htm upgrade_issues.htm VPN.htm whitelisting_under_shorewall.htm" for file in shorewall-docs-xml-$VERSION/*.xml; do a=$(basename $file) b=${a%.*}...

At the current time I am not subscribed to the mailing list. I have a blacklist that I got from www.peerguardian.net that is rather large ( 81 kb). When shorewall start command is issued it takes about 20 mins for it to load. Is this normal or should I do this another way? Also I noticed something very strange with shorewall .. I have cron do a shorewall restart command every 24 hours and

...9;# '' + read first rest + ''['' x# = xINCLUDE '']'' + echo ''# See http://shorewall.net/Documentation.htm#Routestopped and'' + read first rest + ''['' x# = xINCLUDE '']'' + echo ''# http://shorewall.net/starting_and_stopping_shorewall.htm for additional'' + read first rest + ''['' x# = xINCLUDE '']'' + echo ''# information.'' + read first rest + ''['' x############################################################################## = xINCLUDE '']'&...