similar to: pf

Displaying 20 results from an estimated 600 matches similar to: "pf"

2004 Apr 01
3
Control Bandwidth
Hi all, I need a little help, i am studing htb to control user bandwidth (download/upload) and I made a script as below to test. I am testing using ttcp tool from by linux box to other linux (192.168.200.51). my box <---- Linux = more than 128kbit mybot -----> Linux = get 128kbit But I want to control both ways, what am I missing? script: EXTIF=eth0 INTIF=eth1 TC=/sbin/tc DOWN=128
2006 Apr 13
1
Iptables port forwarding help
Hello, I have a webcam that I wish to view from the internet. It is a wireless linksys model with an ip address of 192.168.1.15. I have it set on port 8081, 192.168.1.15:8081. I am using the IP Masquerade HowTo script. Here's the rule I added to my firewall script: EXTIF="ppp0" INTIF="eth1" EXTIP="`$IFCONFIG $EXTIF | grep inet | cut -d : -f 2 | cut -d \ -f
2012 Aug 13
1
iptables: cannot port forward
Easy question here: I have a test network that looks like this (apologies for my lack of ascii skills): [hostc]---------------[Firewall]192.168.42.1 (EXTIF: eth0) /10.0.0.1 (INTIF: eth1) 192.168.42.10 (wan) |(lan) | +-------------[hosta] 10.0.0.10 (port 4242) | +-------------[hostb]
2010 Mar 05
2
Not another SAMBA through a firewall post
I suppose a few questions pop up on this list about access Samba through a firewall. ?I have been very successful running Samba through a firewall, until today. ?I hit a stumbling block. I have a Linux Firewall with the public IP Address of 134.x.x.140 <it is not the exact ip address, but close>. ?I am using NAT and port forwarding to send traffic destined for 137, 138,139, and 445 for BOTH
2004 Jan 12
0
Routing packets in and out
Hello * community, I have 2 * boxes spanning a t1 with hdlc. I'm trying to route packets so people on a subnet seperate of the * boxes can browse the boxes on the * spanned subnet. The * boxes and the boxes on subnet controlled by * can see everything. The boxes on the seperate subnet inside the company can only see so far as the first * box and can't ping across the span.
2006 Mar 14
1
iptables+iproute problem
Hi there. I have followed some documents found here and there, but do not have already success implementing a script using iptables and iproute. What I need is to send all traffic trough an ADSL line, but mail trough an expensive and slow DS0. The mail server lies on the PC acting also as firewall. I include the script. When using that I get some error messages (I found that the flush command
2004 Aug 21
0
Port forwarding from Internal LAN
Hello, I'm trying to set up port forwarding in IPTABLES and so far it's working great from the internet, but when I attempt from my internal LAN using the External IP address, it fails. EXTIF="eth0" INTIF="eth1" EXTIP="xxx.xxx.xxx.xxx" INTNET="192.168.1.0/24" INTIP="192.168.1.1" PORTFWIP="192.168.1.13" >From the internet,
2006 Dec 18
2
creating script for init.d
Hello. I'm moving from a very old Fedora Core 1 to CentOS 4.4, what a change!! Three year ago, I wrote some script (network related) and worked very well. Now, I can put into init.d by means of chkconfig and I restarted the system, but always hang when executing my srcipt (in my new centos 4.4). There a manual for making scripts for init.d? there is some new requirement by which it does not
2007 Apr 18
1
[Bridge] Wireless Bridge problems
I am using the madwifi driver with the patch to allow changing of the MAC address and I have two other ethernet interfaces plus a pppoe interface. My outbound connection is ppp0. I have ath0, eth1, eth2 for internal interfaces. I have added these three interfaces to br0. Once the traffic leaves the linux router, it gets NAT'd and goes out through ppp0. All traffic on all segments works
2004 Mar 24
3
IP Masquerade issues
Okay here is my setup: Gentoo Box running 2.6.4 w/ 4 NICs 1 NIC is for internal network 3 NICs are for external network The machine has a static address assigned to the internal network nic. This nic runs dhcp and dns forwarding. The other 3 nics have external dynamic IP addresses. All will have the same gateway. There are 3 NICs because this is a very large pipe, that will only allocate a
2007 Apr 11
3
Any pointers for multiple subnets?
Hi, I am trying to have some routing done between two subnets. One is 192.168.1.0/24 and has my LAN computers running a mix of Windows 98/XP clients. There are two linux machines on this network running Samba. Another is 192.168.0.0/24 and has the other LAN. Only my linux machines have two NICs, one for each LAN. I am trying out one of these linux machines to be the gateway for both the
2007 Mar 07
4
PREROUTING - DNAT with iptables for an ASTERISK BOX
Hi, I am running a ASTERISK BOX behind a firewall. It is at DMZ . Now I want to connect to my ASTERISK BOX from Internet. So I want to DNAT. How can I do it? Pls assume that ip address that connects to Internet on firewall is 1.2.3.4and is attached to eth0. And ASTERISK BOX is 192.168.101.23 Then, What is the rule (PREROUTING) for it? What is the port to DNAT? I think udp 5060. So I have
2005 Jul 21
2
HTB and prio
Hi, this is a followup to "Problem with HTB and ceil", the problem with the ceiling has been resolved, thanks to the memebers on this m/g. Now I have the problem that packets get into the correct classe with the correct marks but the prios are not respected. I have 4 different classes: 1. voip class / prio 0 / mark 100 / voip traffic 2. ACK class / prio 1 / mark 200 / ACK packets to
2006 Jul 18
0
skype specific QoS - assigning skype traffic to an HTB class
Hi, What do you think about this solution for skype specific QoS: function HTB_shape { ########################################################### # Shapes the traffic of an interface, limiting the late # # Arguments are DEV,RATE DEV=$1 RATE=$2 [...] PORT=dport if [ $DEV == $EXTIF ]; then PORT=sport fi iptables -t mangle -A MYSHAPER-$DEV -p tcp --$PORT 4000 -j MARK --set-mark
2005 Sep 04
2
LDAP/iptables
Hello, I am trying to get LDAP running. So far, the server is running but I cannot connect to port 389 or the server using webmin or phpldapadmin. It could be my ISP has blocked this port but I'm not sure. I have tried to telnet to port 389 but it is refused. All other services run fine. I user the iptables ruleset found in the IP-Masquerade HowTo. Below is the ruleset I follow for
2009 Nov 22
1
transferring SIP call: no voice
I'm trying to connect a sip call from sipgate to Asterisk A to Asterisk B. Both are behind NAT, but port forwarded. I get the connection, but no voice - either in or out. I can call on SIP from A to B (and from B to A). Do it all the time. Asterisk A receives SIP calls from Junction and Teliax. CLI on A looks right: == Using SIP RTP TOS bits 184 == Using SIP RTP CoS mark 5 ==
2005 May 27
1
Still VPN
Hi, still trying to understand one thing. I would definitely like to tell iptables to accept all packets coming from remote vpn only if they hit the $VIRTUALVPNINTERFACE. I tried -o ipsec0 but this is not working, looks like ipsec0 device doesn't exist or it is not recognized. I red on the Openswan users list, that Linux kernel 2.6 native ipsec don't create ipsec* interface (if I am
2006 Dec 29
1
Trouble selecting network interface by port
I have a connection to the Internet (on eth1), and over this I also have a PPTP tunnel set up (on ppp0). Temporarily I use the (slower) PPTP tunnel for everything, but I really just have to use it for some specific purposes, which are distinguishable by port. So, I want to direct only some specific ports to ppp0, using eth1 for the rest. I have tried following the instructions on
2008 May 25
4
Zmodeler2
Hi! It's me... again :P Trying to run Zmodeler2. But im getting errors with missing DLL files. Where i should copy them to solve the problem? messages from console: Code: err:module:import_dll Library MFC42.DLL (which is needed by L"Z:\\windows\\soft\\Moje Dokumenty\\dodatki\\pttm\\zmodeler2\\ZModeler2.exe") not found err:module:import_dll Library MSVCP60.dll (which is needed by
2005 Jul 19
10
Problem with HTB and ceil
Hi, I am trying to setup a shaper for my linux box and I am experiencing some problems. What I am trying to do is priorizing packets on the egress link, therefore I have setup some prio classes etc. The priorizing seem to work but the problem is that the ceil parameter doesnt seem to work on non leafs. This is what stats show: > class htb 1:1 root rate 3000bit ceil 3000bit burst 1602b/8 mpu