similar to: NTP server problem behind firewall

Curiously examining some of the blocked IP addresses in the daily Logwatch report, I notice strange sites attempting to connect to our servers on port 123 (the time port). I also notice our servers successfully contacting official time references centres which are not those sites trying to connect to us. I notice too the installed time software is listening on every available IP. I can not

Hello! I am using Asterisk as transparent voice recorder for calls (isdn <-> asterisk <-> pbx). Voice recording (therefore voice forwarding) is working great but seems that Asterisk does not route/bridge/forward D-Channel messages which means PBX cannot get time synchronization answer from provider and tarification impulse too. With direct connection PBX works great and use both

Hi community, i have a samba server that work's great, but my friends of IT security said that is vulnerable without a firewall,  i try to set an iptables firewall using the official documentation but is not working (obviously), this ti my config: #!/bin/sh echo n Aplicando Reglas de Firewall... ## FLUSH de reglas iptables -F iptables -X iptables -Z iptables -t nat -F ## Establecemos

Hello! I would like to store ISDNCAUSE on automatic call-out campaign (possibly gives more detail on failed call). How is it possible? I have tried 'failed' and 'h' extension. No luck. Extension 'failed' does not know anything about ISDNCAUSE and 'h' extension is not called at all. Any idea? I am using Asterisk 1.2.14 on FC4 if it counts. Cheers, a

Hi, I get frequent logfile entries from Shorewall similar to the following: Nov 25 11:22:51 10.0.0.248 kernel: Shorewall:net2mill:DROP:IN=eth2 OUT=eth0 SRC=202.96.117.50 DST=10.0.0.10 LEN=56 TOS=0x00 PREC=0x00 TTL=241 ID=0 PROTO=ICMP TYPE=11 CODE=0 [SRC=10.0.0.10 DST=202.101.167.133 LEN=48 TOS=0x00 PREC=0x00 TTL=1 ID=13591 DF PROTO=TCP INCOMPLETE [8 bytes] ] Could someone explain what the

Hi everyone, I had posted recently about getting Samba4 to work on CentOS 6.4 but having changes only replicating in one direction, from the Win2k3 AD but not back to it. I solved the problem, this time, by disabling iptables. I find it a bit hard to understand. These are the rules I have set up: *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [52:5888] -A INPUT -m state

I have a Centos 5 64-bit server that has ntp service enabled. Windows XP with SP2 cannot properly sync to it for time, but can communicate with it via samba, ssh, and anything else. I also disabled the Windows Firewall. The C5 system does not have any firewall enabled. Other C5 workstations can successfully sync to it via ntpdate. What else could cause the XP machine to not be able to

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=552 ------- Additional Comments From cbettero@ciditech.it 2007-03-04 21:48 MET ------- This problem prevents AJAX web sites to be hosted on the internal web server, because many packets will be dropped instead of passing into PREROUTING chain... -- Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email

Hello I am trying to sync via NTP locally (since I have no Internet access). None of the NTP stuff I read on the net seems to work right. I mean it works fine setting up a client going to something like 0.pool.ntp.org but when I want to make my LInux box a server, and I do an ntpdate to it from another machine, it says no suitable server found. I have tried every possible combination of

Dear Members I hope you are all doing well. I am busy teaching myself iptables and was wondering if I may get some advise. The scenario is the following: 1. Default policy is to block all traffic 2. Allow web traffic and SSH 3. Allow other applications I have come up with the following: #!/bin/bash # RESET CURRENT RULE BASE iptables -F service iptables save # DEFAULT FIREWALL

Greetings, Please treat this post with kid gloves as I am bit rusty of the late on centos and last NTP server that I worked on was during centos 5.1 days. I am going to have to install centos 6.3 in coming week in all windows environment. This box will be the tunning glpi and ocs-inventory. I am planning to have two NICs: one facing the raw internet and other on a Private LAN. I want this box

Hello list, I have these sorts of filters, putting traffic into the appropiate classid (1:15 is the default class): ${TC} filter add dev ${DEV_IFB} parent 1:0 prio 1 protocol ip u32 \ match ip protocol 0x6 0xff \ match ip sport 22 0xffff \ classid 1:11 # ssh ${TC} filter add dev ${DEV_IFB} parent 1:0 prio 1 protocol ip u32 \ match ip protocol 0x6 0xff \ match ip dport 22

Folks I'm struggling with my firewall settings, and would appreciate some help. I have a gateway machine (currently Centos 7 with IPV4 only) with two NICs. One is connected to the internet, the other to an internal network (10.0.0.0/24) of mixed hardware (windows7, android tablets, android phones, linux boxes) using NAT. I wish to block all outgoing connects to any external IP address

I have multiple VM's on the same KVM host. One of the VM's is running NTP. All VM's can reach eachother, no firewall in between. But the problem is, the VM's cannot communicate over port 123/udp to the NTP VM. Network: 172.24.100.0/22 KVM: 172.24.101.50 VM ntp: 172.24.102.10 VM foo: 172.24.102.20 1. On the NTP server, listen for any incoming packets from VM foo

Hi On 5.3 i have a situation where some boxes have been 3 or 4 seconds out and restarting ntpd has fixed the issue. What i dont understand is why the clocks did not drift to the correct time when the config seems correct in that restarting ntp did correct the time. Is there something 'special' i need to do in order for the drift to work? $ cat /etc/ntp.conf restrict default

Hello, I recently compiled Samba 4.0.6 (as an AD DC) and am running it on Ubuntu 12.04. I followed the instructions on the Samba wiki (https://wiki.samba.org/index.php/Configure_NTP) for how to configure ntp, however the domain clients are rejecting the DCs as being acceptable time sources. Below is my ntp.conf: server 127.127.1.0 fudge 127.127.1.0 stratum 10 server 0.pool.ntp.org iburst

I have 30 identical Lenovo desktop systems running CentOS 5.1. On one of those systems the clock is running slow (5+ minutes from yesterday to this morning and another minute since this morning) despite the fact that NTP is running on all of them and they all have the exact same /etc/ntp.conf file (I compared the MD5 sums of that file on all the systems). Here is the output of

Hello! I''ve put some questions on this list some weeks ago and I''ve got good answers. Thank you! Now I''ve finished my (beautyful) script and I ran it on my router... About my script: It routes packages based on their destination on the Internet. I have about 1650 preffered destination networks listed in some file. The script read this file and marks every package for

On Tue, 16 Jun 2020, Leroy Tennison wrote: > I have a gateway machine (currently Centos 7 with IPV4 only) with two > NICs. One is connected to the internet, the other to an internal > network (10.0.0.0/24) of mixed hardware (windows7, android tablets, > android phones, linux boxes) using NAT. I wish to block all outgoing > connects to any external IP address on port 22 (ssh)

Hello, I have a question regarding signed NTP support for Samba4 on Ubuntu 12.04. I have followed most of the steps outlined here: https://wiki.samba.org/index.php/Configure_NTP These steps I did differently are: * I did not install from source because the latest Ubuntu package for ntp available on Ubuntu 12.04 includes ntp-signd support already * I did not install Samba4 to /usr/local/samba, so