Displaying 20 results from an estimated 2000 matches similar to: "ipchains - major newbie trap"
2014 Apr 23
2
sysvol / netlogon / logoinscript
Dear all,
I have build a Domain with to samba4 DC's. Everything works fine DNS Replication, User Replication, etc.
Now I started to create a Logonscript. I doesn't reach to get the Logonscript automatcally loaded. The client doesn't load the DDP, doesn't load the GPO and doesn't load the logonscript individually in the user-setup by Remote Server Tools.
When I start
2005 May 30
5
ipchains to shorewall
I have tried to replace these lines from ipchains to work with shorewall.
# /NFS requires 111/tcp (sunrpc/portmapper) and *all* UDP ports./
#
ipchains -A input -p tcp -s $SUBNET -i eth0 -d 0/0 111 -j ACCEPT
ipchains -A input -p udp -s $SUBNET -i eth0 -d 0/0 -j ACCEPT
# /These ports are required by bootp, tftpd, and PXE./
# /There are also a handful of udp ports that need to/
# /be open,
2002 Jun 14
4
ipchains question
I have a couple questions that I will submit separately. When I have
IPchains running I can't get my samba box to show up in network
neighborhood, but when I turn ipchains off the box shows up. What rules do
I need to add for things to work properly?
--
Raymond Norton
Little Crow Telemedia Network
320-234-0270
2001 Feb 22
1
SSH connection hangs with ipchains/RH6.2/OpenSSH 2.5.1p1 (butnot <= 2.3.0p1)
I figured this out -- looks like 2.5.1p1 is now using ports < 1024 on
the client side (wasn't before?). I had a ipchains rule to allow ACK
packets to 1024:65535, which was good enough for <= 2.3.0p1 :
#allow only ACK tcp packed
ipchains -A input -j ACCEPT -i eth0 -s any/0 --dport 1024:65535 -p tcp !
-y
So I added the following :
#allow return from ssh connections
ipchains -A input -j
2002 Oct 09
7
ipchains iproute2 and port based routing
Hi all!
I try to make port based routing, because a have two connections to the
internet.
My router is a "one disk floppy router for linux". It is a big router
project www.fli4l.de. I try also to make a opt, it is like a plugin for this
router.
This project uses Kernel 2.2.19 compiled with libc5 (because it is small and
you can use one floppy disk).
At the moment, iproute2 is not
1999 Nov 22
1
Ipchains
Hi-
I heard about a bug in ipchains, could you please tell me what to do?
Thanks
2002 Oct 09
2
imq in 2.2.17 and ipchains?
Hi stef;
imq patch of 2.2.17 form http://luxik.cdi.cz/~devik/qos/imq.htm
diff against 2.2.17
Can you tell me how imq work with ipchains?
thanks for your help
regards,
haipe
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
2002 Aug 06
8
converting MASQ from ipchains
Hello,
on my old system I''m using ipchains. Can anyone help me with converting rule
/sbin/ipchains -A forward -j MASQ -s source_addr -d destination_addr 443 -p tcp
to shorewall. I know that I can write
eth0 source_addr
to /etc/shorewall/masq file
but I can''t found where I can specify the destination address.
The reason for this is to allow one user (computer) access only to
2000 Mar 02
0
ICMP & IPCHAINS
To all those that wanted to know how I was filtering particular
ICMP packets here is a few snippets from my firewall script which is
based on one by Ian Hall-Beyer. I hope this helps you get started.
Also note the output of the command:
ipchains -h icmp
Shawn Mitchell mentioned blocking all ICMP echos and especially
broadcast echos. Perhaps he''d care to elaborate with a similar
2001 Feb 22
0
SSH connection hangs with ipchains/RH6.2/OpenSSH 2.5.1p1 (but not <= 2.3.0p1)
I just recently installed OpenSSH 2.5.1p1 on a RH6.2 box (kernel
2.2.17). I run ipchains to do packet filtering, allowing incoming
connections only to 22 and 80 (and some other ports for specific
machines). I was able to run prior versions of openssh in this fashion
(I've run it from the first release, I think). Upon installing 2.5.1p1
I found that my attempts to connect hang, here is ssh
1999 Dec 13
0
NT Login with ipchains
Hello David,
After some experiments and discussions I came to the following result
concerning
private NT-Box connecting to a LAN via ipchains and using all NETBIOS
services (incl. domain-logon):
Cross-subnet browsing with NETBIOS could only be done by a local master
browser in the private net. I first thought of using Samba on the Linux
router for that. But the Samba service would have to use
2001 May 24
0
ipchains
Dear Tinc Experts,
I have been struggling for some time now, with Tinc pre3, and firewall
rulesets and routing. I did once manage to get Tinc to work okay in a
test-bed environment. I then tried to set it up for a 'real-life'
setup and cannot get it to work properly.
My real-life setup looks like this:
Network A:
192.168.1.0 / 255.255.255.0
192.168.1.7 tap1 device gateway >
2002 Jul 30
1
Fwd: Reh Hat ipchains tricks
Hi Raymond,
I also struggled 3 days to set up a direct connection between a RH7.3 box
and a WinME box with a crossover cable for experiment and met with
frustration. The setup of WinME box has no problem and it can connect to
other Win boxes for file sharing.
IP Address
RH7.3 192.168.0.1
WinME 192.168.0.2
Ping started connecting but both boxes can't see each another. I also
doubt
1999 Jul 30
0
Linux 2.2.10 ipchains Advisory (fwd)
---------- Forwarded message ----------
Received: from lists.securityfocus.com (lists.securityfocus.com [216.102.46.4])
by blues.jpj.net (right/backatcha) with SMTP id VAA15167
for <trevor@JPJ.NET>; Tue, 27 Jul 1999 21:17:48 -0400 (EDT)
Received: (qmail 28179 invoked from network); 27 Jul 1999 19:14:06 -0000
Received: from lists.securityfocus.com (216.102.46.4)
by lists.securityfocus.com
2005 May 31
0
ipchains for firewall, QOS howto?
I have an Asterisk PBX behind a 'manually-built' IPCHAINS firewall machine.
Can anyone tell me what I need to allow/build QOS packet rewrites through
this simple NAT barrier? What do I need to pass to IPCHAINS to let QOS out
to the next outside network hop?
I ask this, because I have been getting intermittent jitter from my provider
(TELIAX), and since it seems near-impossible to
2008 May 28
1
IPChains
How can I tell if its running?
Where is the default location?
Thanks..
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20080528/647f6634/attachment-0005.html>
2001 Apr 05
3
Config question.
Can anyone tell me what the absolute minimally permissive ipchains rule
would be to allow tinc to operate correctly between two hosts. If we
were to presume each tinc host had a default-deny policy, what ipchains
command(s) would allow tinc to do its thing?
I've scanned the docs on the tinc site and not found the answer- sorry
if I'm blind or dumb.
Thanks,
Patrick
-
Tinc:
2002 Nov 06
1
help, strange question about tcp and udp traffic control?
Hi ;
+--------+ +-----------+ +--------+
| server |---------- | linux box |---------------------| Client |
+--------+ +-----------+ +--------+
MY script:
tc-htb3 qdisc del dev eth1 root
ipchains -F
tc-htb3 qdisc add dev eth1 root handle 10: htb default 20 r2q 40
tc-htb3 class add dev eth1 parent 10: classid 10:1 htb
2002 Mar 03
1
tinc vs. ipchains masquerading
Howdy,
I tried tackling this on irc with Ivo, but I suspect that irc may really
not be the best medium for technical discussions, so I'll reprise it here.
I am trying to duplicate the "tinc from behind a masquerading firewall"
example from the tinc web site:
(home) <--> (masquerading firewall) <--> (office)
192.168.1.21 192.168.1.1/1.2.3.4
2001 May 17
1
tinc fails because of firewall script
Hi Tinc Mailing-Group,
I am a bit stuck with firewalling rules at the moment. Maybe someone
could please advise me a good rc.firewall script to use on my setup.
If anyone runs an ipchains firewall script on their linux box which is
ALSO running tinc, could they please mail it to me, for my perusal.
I have tinc pre3 set up and working on my systems, however I can only
get it to work if I set the