similar to: Bypassing firewall alternatives

Hello, Usually when i''ve a hole to poke through firewalls, i have many hosts to update : workstation firewall, lan firewall, the other lan firewall, and the server behind the last firewall. all of them are managed with shorewall... Is there a smart way to update them all at once ? What you guys do on your firewalls ? thanks. -- xavier

Franga . wrote: > > Now i moved to my next step of trying to get Simple Menu's working. My > problem occurs after selecting a menu option. The image loads and > gives me this output: > > command line: initrd=images/c201.img BOOT_IMAGE=memdisk Disk is > floppy, 1440 K, C/H/S = 80/2/18 Total size needed = 1491 bytes, > allocating 2K Old dos memory at 0x9f000 (map

Hi, I am facing a task of choosing vpn server. I do not know which is better. The one distributed with CentOS4.5 only supports pppd (or maybe pptp but I cannot find it). If* *I want to use PPTP or L2TP, which one should I choose? OpenVPN? Poptop? Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL:

Hey, Firstly i like to say good work on your project, I love the ability to use PXE to ghost all my machines without the use of floppy disks. Now i managed to setup PXE correctly using a copy of Barts Boot Disk's with ModBOOT and modified it to meet our company needs. This works perfect and i can ghost not a problem using the standard loader prompt boot: and inserting text depending on

Hello, Is that possible to disable running of PHP on certain directories? I am running a server which provides personal homepage service. However, not every user are familiar with security, some may upload some PHP scripts with bugs/holes. I do not want them to be executed on the server. I can enable the safe_mode, but I have some other PHP scripts which need safe_mode to be disabled. Any

Hi, I managed to get some more IP's from my ISP and am considering putting my Asterisk box on one of them, so it is not behind NAT anymore :) However I need to make sure it is secure, is anybody else doing this who would be so kind as to share their firewall rules/ideas? Many thanks Mike

Hi all, I am new to Tinc VPN and really would like to make full benefit of this implementation if possible. I would like to know whether I will be able to use Tinc to its full potential. My current setup is as follows, IPfire router/firewall(openvpn client) --->ISP(Internet)--->Amazon VPS(openvpn server). The ipfire router is behind a CARRIER-GRADE NAT, I am able to reach the network

Hi list, Not sure if this is helpful for anyone but I am working on a Facebook project where I need bypass the new CSRF protection (built into Rails 2.0) under certain conditions. However, since my project works outside of Facebook I don?t want to disable the CSRF protection from requests made outside of Facebook. Here is a small extension i wrote for the ForgeryProtection module.

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=554 Summary: Packet illegaly bypassing SNAT Product: netfilter/iptables Version: linux-2.6.x Platform: All OS/Version: All Status: NEW Severity: major Priority: P2 Component: NAT AssignedTo: laforge@netfilter.org ReportedBy:

I'm wondering if anyone has tried use local Solaris NSS files for root-only login VIA the console or ssh - effectively bypassing domain security to the PDC using ADS - Windows 2003 AD? I am not having a problem logging as the non-admin user. I wish to login to the root account that would not be part of the ADS domain security eventually over an ssh connection or directly to /dev/console via a

Hi, I have HA firewalls configuration (keepalived) on one site. Each firewall has its own IP and a Virtual IP (VIP) that keepalived activate on one of the firewall (active/passive HA configuration). I think I can set all two firewalls with same configuration, generating key pairs on one firewall and copying that to the second, so the remote host can see always one of the other firewall as the

On 10 February 2015 at 09:02, jg <webaccounts173 at jgoettgens.de> wrote: > > >> >> I get an occasional similar problem, we have Mikrotik firewalls and from >> tcpdump monitoring on the asterisk boxes I can see that the firewall >> (unbidden) has changed the IAX port. Usually a firewall reset and sometimes >> PBX reset combination fixes it. >>

My mission is to get one * box to dial another * box' extensions. I have set this up previously without any issues by making a simple IAX trunk/extension pair on the two boxes and create a dial plan with a prefix like 9|XXX to select an extension on the other box. My problem is that I now have to do this with extremely restrictive firewalls thrown into the mix - firewalls I have no control

I'm currently trying to reboot a CentOS 7.5 workstation (to complete an upgrade to 7.6), but it is 'stuck' while shutting down with 'A stop job is running for ...' - the counter initially gave a limit of '1min 30s' - but each time it reaches that limit, it just adds on ~90 seconds to the limit ... Currently the limit is '25min 33s' I'm in no hurry to

Hello everybody. I would like to enable QoS on the internal firewall NIC (eth2) to prevent bandwidth saturation from ftp downloads (for example). This is my firewall schema. ___ private network (100bit/s FD) / / /\ | / //\\ |/ || |eth2 \\ |

Hello, http://www.voip-info.org/wiki/view/Asterisk+Letting+SIP+clients+connect+directly The link above indicates that it is possible to setup RTP streams to directly flow between endpoints and completely bypass Asterisk. I would like to know if this configuration would work when, a) both endpoints are behind NAT, and/or b) both endpoints don't support same codecs with media flowing

James Pearson wrote: > > I'm currently trying to reboot a CentOS 7.5 workstation (to complete an > upgrade to 7.6), but it is 'stuck' while shutting down with 'A stop job > is running for ...' - the counter initially gave a limit of '1min 30s' - > but each time it reaches that limit, it just adds on ~90 seconds to the > limit ... > > Currently

Is it possible to setup a route that will place the packet ''on the wire'' even if the destination is a local IP? I have been through the iproute2 docs and nothing jumps out at me. I am working on a project measuring network latency/jitter/etc and am currently using a GRE tunnel as the test path for measuring the first leg. The router at the other end of the tunnel faithfully

I have two iptable rules for userspace modification : iptable -t mangle -A PREROUTING -p udp --dport 9090 -j NFQUEUE iptable -t mangle -A OUTPUT -p udp --sport 9090 -j NFQUEUE I have the following network setup: client ---------------->Linux Box or router--------------------->server. What i'm trying to achieve is modifying all packets which comes from client to 9090 port of the

Hello everyone, I noticed recently that when I had /etc/nologin in place on my server I couldn't log in when I authenticated via passwords, but when I used RSA authentication I was able to log in no problem. I looked through the source, and I think I might see where the problem is. I have a Linux system, so sshd was compiled with PAM support. Using normal authentication, the pam_nologin