Displaying 20 results from an estimated 400 matches similar to: "Security Advisory"
2014 Dec 08
3
[Bug 990] New: nfct segfault in nfct_helper_free
https://bugzilla.netfilter.org/show_bug.cgi?id=990
Bug ID: 990
Summary: nfct segfault in nfct_helper_free
Product: libnetfilter_cthelper
Version: unspecified
Hardware: x86_64
OS: SuSE Linux
Status: NEW
Severity: normal
Priority: P5
Component: libnetfilter_cthelper
Assignee:
2015 Sep 09
0
[ANNOUNCE] conntrack-tools 1.4.3 release
Hi!
The Netfilter project proudly presents:
conntrack-tools 1.4.3
The conntrack-tools are a set of tools targeted at system
administrators. They are conntrack, the userspace command line
interface, and conntrackd, the userspace daemon. The tool conntrack
provides a full featured interface that is intended to replace the old
/proc/net/ip_conntrack interface. Using conntrack, you can view
2012 May 26
2
[ANNOUNCE] conntrack-tools 1.2.0 release
Hi!
The Netfilter project proudly presents:
conntrack-tools 1.2.0
This release is a major milestone that includes support for
expectation synchronization and the new nfct utility that, by now,
only supports the new cttimeout infrastructure.
See ChangeLog that comes attached to this email for more details.
You can download it from:
2012 Jun 17
0
[ANNOUNCE] ulogd 2.0.0 release
Hi!
The Netfilter project proudly presents:
ulogd 2.0.0
ulogd is a userspace logging daemon for netfilter/iptables related
logging. This includes per-packet logging of security violations,
per-packet logging for accounting, per-flow logging and flexible
user-defined accounting.
ulogd was almost entirely written by Harald Welte, with contributions
from fellow hackers such as Pablo Neira
2013 Nov 14
1
Possible bug: TC with HFSC fails to load if umax is not provided
I stumbled upon a problem while upgrading Ubuntu 13.04, Shorewall version
from 4.4.26.1 to 4.5.16.1.
Everything was working fine before, after upgrading the script wouldn''t
start.
First some config files.
tcdevices:
#INTERFACE IN-BANDWIDTH OUT-BANDWIDTH OPTIONS REDIRECTED
eth1 - 6300kbit hfsc,classify
ifb0 - 6300kbit hfsc
2012 Sep 27
5
Understanding IFB
I''m experiencing a problem with masquerade downloads saturating my
internet connection. I''ve implemented an IFB and now am looking into
flow keys. Although I''ve read the documentation, I''m not sure I have
this right. Can someone help?
/etc/shorewall/params:
MID_IF=eth0
MID_IF_TC=1
INET1_IF=eth1
INET1_IF_TC=2
INET1_IFB_IF=ifb0
INET1_IFB_TC=3
Note: MID_IF
2002 Mar 12
0
Heineken Face EU Fines for Curbing Rivalry
Heineken NV and Carlsberg A/S may be fined after the European Commission charged that they conspired to curb competition in the Dutch and Danish beer markets from 1993 to 1996.
The European Union's antitrust regulator said evidence collected in raids two years ago showed the two brewers broke EU law by agreeing not to sell ``intensively'' in each other's territory. The companies
2012 May 26
0
[ANNOUNCE] iptables 1.4.14 release
Hi!
The Netfilter project proudly presents:
iptables 1.4.14
This release several bugfixes and support for the new cttimeout
infrastructure. This allows you to attach specific timeout policies to
flow via iptables CT target.
The following example shows the usage of this new infrastructure in a
couple of steps:
1) Create a timeout policy with name `custom-tcp-policy1':
nfct
2020 Apr 01
0
[ANNOUNCE] conntrack-tools 1.4.6
Hi!
The Netfilter project proudly presents:
conntrack-tools 1.4.6
The conntrack-tools are a set of tools targeted at system
administrators. They are conntrack, the userspace command line
interface, and conntrackd, the userspace daemon. The tool conntrack
provides a full featured interface that is intended to replace the old
/proc/net/ip_conntrack interface. Using conntrack, you can view
2005 Oct 04
0
IMQ and nfcache
Hi, I''m working on the IMQ patch for 2.6.14-rc* and ran in trouble with
nfcache. I have to be honest that I''m not following kernel devel as I
should so I need to ask for a little help here. I know Mr Harald Welte
removed nfcache but I''m not sure about the way to go. I have this at
net/ipv4/netfilter/ipt-IMQ.c:
static unsigned int imq_target(struct sk_buff **pskb,
2003 Apr 25
0
[Bug 85] New: couldn't write file ,call syscall ,ex. sys_open
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=85
Summary: couldn't write file ,call syscall ,ex. sys_open
Product: netfilter/iptables
Version: linux-2.4.x
Platform: i386
OS/Version: RedHat Linux
Status: NEW
Severity: major
Priority: P2
Component: ip_tables (kernel)
AssignedTo:
2003 Feb 26
2
[Bug 55] ICMP translation problem with local NAT
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=55
laforge@netfilter.org changed:
What |Removed |Added
----------------------------------------------------------------------------
BugsThisDependsOn| |2
Status|NEW |ASSIGNED
------- Additional Comments From laforge@netfilter.org
2012 Sep 26
2
Error message starting Shorewall with TC simple enabled
Hi,
Hi, I get an error with TC Simple.
System:
shorewall 4.5.6.2
kernel 3.5.3
iptables 1.4.13
xtables 1.45
iproute2 3.5.1
OS: gentoo/linux amd64
when shorewall executes this command:
tc filter add dev eth0 protocol all prio 1 parent 1011: handle 1011 flow hash keys nfct-src divisor 1024
It fails with this error:
RTNETLINK answers: No such file or directory
We have an error
2013 Sep 10
1
Próxima reunión del "Grupo de Usuarios de R de Madrid - 26-Septiembre"....
Hola,
El próximo 26-septiembre comenzamos la nueva temporada de reuniones del
"Grupo de Usuarios de R de Madrid".
Esta temporada trae algunas novedades, una de ellas es que intercambiaremos
el lugar de las reuniones entre la Facultad de Ciencias de la UNED y ahora
el bar S10 en el que esperamos mantener unas reuniones más próximas y si
cabe informales.
Por ahora tenemos un par de
2006 Jul 25
0
[Bug 495] New: Netfilter Connection Tracking Race Condition in Kernel 2.4.x
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=495
Summary: Netfilter Connection Tracking Race Condition in Kernel
2.4.x
Product: netfilter/iptables
Version: linux-2.4.x
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: ip_conntrack
2007 Apr 18
0
[Bridge] Virtual network and bridges
Hi everybody !
I'll try to explain first what I would like to do with the functionalities of tap and bridge interfaces, qemu, some isos(I used slax(slackware live cd))
and the forwarding mechanisms of the Linux kernel.
I'd like to simulate such a network:
Internet
|
(eth0:@public address)
* host *
|
br0 (@192.168.0.254)
2015 Sep 09
0
[ANNOUNCE] libnetfilter_conntrack 1.0.5
Hi!
The Netfilter project proudly presents:
libnetfilter_conntrack 1.0.5
libnetfilter_conntrack is a userspace library providing a programming
interface (API) to the in-kernel connection tracking state table. The
library libnetfilter_conntrack has been previously known as
libnfnetlink_conntrack and libctnetlink. This library is currently
used by conntrack-tools among many other
2009 Dec 14
0
[Bug 595] MARK filter doesn't work
http://bugzilla.netfilter.org/show_bug.cgi?id=595
eric at inl.fr changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WORKSFORME
------- Comment #3 from eric at inl.fr 2009-12-14 20:31 -------
With
2011 Mar 14
0
[Bug 665] Can't start error opening /var/log/ ...
http://bugzilla.netfilter.org/show_bug.cgi?id=665
Bruno Friedmann <bruno at ioda-net.ch> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |REOPENED
Resolution|FIXED |
--- Comment #9 from Bruno Friedmann <bruno at
2016 Feb 16
0
[Bug 1021] iptables -j CT --timeout policy
https://bugzilla.netfilter.org/show_bug.cgi?id=1021
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
CC| |pablo at netfilter.org
--- Comment #1 from Pablo