Hi folks! I need to block ultrasurf and searching over the web found a lot of info about this but nothing works as espected. I found a partial solution: block IPs using a virtual machine with virtualbox with this program and cutting the connection. This program search another IP to get conected again and work again. I will create a script and execute this every minute to create a dinamic list of this. In /etc/params i create a new parameter called PROXYS with IPs separated by comma and work ok, but i need to recreate this line every time i found a new IPs of this program. I can use sed to do this and change the line every time, but i didn''t have skill to do this. I now i have to learn about sed! Can i use in /etc/params somethig like: IPPROXY=/home/shorewall/ip_list.proxy ??? Best regards and thanks for your time!! Emiliano Vazquez | PcCentro S.R.L. Office: +54 (11) 4951-0203 ext. 4 Celular: 15.6253.7165 Mail: emilianovazquez@gmail.com Web: http://www.pccentro.com.ar ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
On 8/10/12 12:48 PM, emilianovazquez@gmail.com wrote:> Hi folks! > > I need to block ultrasurf and searching over the web found a lot of info about this but nothing works as espected. > > I found a partial solution: block IPs using a virtual machine with virtualbox with this program and cutting the connection. > This program search another IP to get conected again and work again. > > I will create a script and execute this every minute to create a dinamic list of this. > > In /etc/params i create a new parameter called PROXYS with IPs separated by comma and work ok, but i need to recreate this line every time i found a new IPs of this program. > > I can use sed to do this and change the line every time, but i didn''t have skill to do this. I now i have to learn about sed! > > Can i use in /etc/params somethig like: > > IPPROXY=/home/shorewall/ip_list.proxy ??? >filetolist() { local list=$(cat $1) echo $list | sed ''s/ /,/g } IPPROXY=$(filetolist /home/shorewall/ip_list.proxy) -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
Thanks Tom i will try your idea it''s very cool! Best regards. Emiliano El 11/08/12 16:48, Tom Eastep escribió:> On 8/10/12 12:48 PM, emilianovazquez@gmail.com wrote: >> Hi folks! >> >> I need to block ultrasurf and searching over the web found a lot of info about this but nothing works as espected. >> >> I found a partial solution: block IPs using a virtual machine with virtualbox with this program and cutting the connection. >> This program search another IP to get conected again and work again. >> >> I will create a script and execute this every minute to create a dinamic list of this. >> >> In /etc/params i create a new parameter called PROXYS with IPs separated by comma and work ok, but i need to recreate this line every time i found a new IPs of this program. >> >> I can use sed to do this and change the line every time, but i didn''t have skill to do this. I now i have to learn about sed! >> >> Can i use in /etc/params somethig like: >> >> IPPROXY=/home/shorewall/ip_list.proxy ??? >> > > filetolist() { > local list=$(cat $1) > echo $list | sed ''s/ /,/g > } > > IPPROXY=$(filetolist /home/shorewall/ip_list.proxy) > > -Tom > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today''s security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >-- Emiliano Vazquez | PcCentro Informatica & CCTV Office: +54 (11) 4951-0203 Interno 4 Movil: 011-15-6253-7165 Mail: emilianovazquez@gmail.com Web: http://www.pccentro.com.ar ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> filetolist() { > local list=$(cat $1) > echo $list | sed ''s/ /,/g > } > > IPPROXY=$(filetolist /home/shorewall/ip_list.proxy) >--Hi Tom. can you tell me where i can put this "filetolist" command? I try it in params but "shorewall check" don''t pass the test. sorry if this is a simple question. I did not find documentation about this. Best regards. Emiliano Vazquez | PcCentro Informatica & CCTV Office: +54 (11) 4951-0203 Interno 4 Movil: 011-15-6253-7165 Mail: emilianovazquez@gmail.com Web: http://www.pccentro.com.ar ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
On 08/14/2012 11:44 AM, Emiliano Vazquez wrote:>> filetolist() { >> local list=$(cat $1) >> echo $list | sed ''s/ /,/g >> } >> >> IPPROXY=$(filetolist /home/shorewall/ip_list.proxy) >> -- > > Hi Tom. can you tell me where i can put this "filetolist" command? > > I try it in params but "shorewall check" don''t pass the test. > > sorry if this is a simple question. I did not find documentation about this.Put in in /etc/shorewall/params. Apparently, there was a character missing in my email: filetolist() { local list=$(cat $1) echo $list | sed ''s/ /,/g'' } -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/