similar to: Shorewall 4.3.11

Hello I''m trying to setup tinyproxy and shorewall on a LEAF Bering firewall. What I''d like to do is block all HTTP connections to the internet on port 80 and 8080 and force users to use port 8888. So in shorewall/rules I have ACCEPT loc fw tcp 8888 DROP loc fw tcp 80,8080 The ACCEPT works fine but the DROP does not seem to work. If I

The Shorewall team is pleased to announce the availability of Shorewall 4.2.10. Astute users will notice that the version of Shorewall-perl included in this release is 4.2.10.1. We corrected a problem which was discovered after the release was initially uploaded, and we wanted to avoid the confusion that would inevitabley result if we were to release a different set of code with the same version

Hi, as per the shorewall MultiISP documentation ( http://www1.shorewall.net/MultiISP.html ), it says "Use of this feature requires that your kernel and iptables include CONNMARK target and connmark match support (Warning: Standard Debian™ and Ubuntu™ kernels are lacking that support!)." it means MultiISP wont work properly if i am using Ubuntu server. if yes whats the

Hi list, I''m struggling with this problem for a long time, hopefully someone can explain me what I''m doing wrong: I have a shorewall installation with interfaces net eth0 - eth1 hosts loc 10.0.10.0/24 loc 10.0.20.0/24 +some other zones and subnets there are aliases on eth1 for gateways for the two loc subnets eth1:1 10.0.10.1 eth1:2 10.0.20.1 Everything works fine, loc

I have delete "lo" Zones And Interface and rebuild all the firewall >From Local I ping www.google.fr with DNS resolution DNSMASK installed on the firewall. POSTFIX and Squid+SquidGuard Installed on firewall All clients machines have the IP of Firewall for Dns resolution New Dump joint Without Squid : I surf and all works perfectly With Squid And REDIRECT rule : surf Is VERY TOO

I''m trying to have a exec dependency on a service object that would keep it from being restarted if the exec fails. Unfortunately, the service gets refreshed regardless whenever the exec is run, failure or not. I''ve tried various combinations of subscribe/require/notify, but can''t find an elegant way to not restart the service when the dependency fails. I must be

Hello, I have set up 2 PXE servers, on Linux Debian Sarge and Etch, on which I use syslinux + ISC dhcp3 + tftp-hpa for booting. The older one, on Sarge, has been working fine for more than a year, great :-) The new one, on Etch, with the exact same config files, does not : the DHCP part seems to work, but at the end pxelinux seems to lose the server's IP address; this what I see on the

Hi, I have recently installed shorewall with a very simple rules configuration, ---------------------------------- #SECTION RELATED SECTION NEW Ping/ACCEPT all $FW Trcrt/ACCEPT all $FW SSH/ACCEPT all $FW ACCEPT net $FW tcp http #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE ----------------------------------------- and I have no

Hi all, The first couple of xen machines we setup used the default xen bridging setup for dom0. I am sure there are many other people out there with this setup. Now that I know a bit more there are probably better ways out there to configure the xen box for firewalling, most notably assigning the red card to a domU and running shorewall in there. But in the meantime I would like to further

Package: logcheck-database Version: 1.2.39 Severity: normal I use dhcp3-server and a dhcp client which is Sony HDD video recorder CoCoon. The client not return client host name. In this case, dhcpd server assumed the client host name is (none). Therefor dhcpd output log described below. > Jan 7 10:49:24 on-o dhcpd: DHCPDISCOVER from 08:00:46:33:55:77 ((none)) via eth0 > Jan 7 10:49:25

Beta 3 is now available for testing. http://www.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta3 ftp://ftp.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta3 ---------------------------------------------------------------------------- P R O B L E M S C O R R E C T E D I N 4 . 4 . 0 Beta 3

Hi friends... I am using pxelinux but it is so slow when I don't write MAC addresses in /etc/dhcp3/dhcpd.conf so How do I can use pxelinux.cfg/default directly and not have to wait? A lot of thanks. {pepo} -- Linux User Registered #232544 Jabber : pepo at jabberes.org ICQ : 337889406 GnuPG-key : www.keyserver.net ----------------

The scenario: Installed a Ubuntu 5.10 Linux server with dhcp3-server, apache2 and tftpd-hpa to serve as a mass Linux deployment station. It can serve up to 200 PCs at one time installing Linux using just one NIC card in the server. Recently, we wanted to expand our bandwidth to push out these PCs faster. The problem: If there is more than one NIC in the computer, TFTP will not work properly.

Beta 4 is now ready for testing. http://www.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta4/ ftp://ftp.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta4/ ---------------------------------------------------------------------------- P R O B L E M S C O R R E C T E D I N 4 . 4 . 0 Beta 4

I'm trying to boot linux on a VIA EPIA-M board (a Nehemiah-based M10000), and I'm having some trouble with it. I'm watching the network transactions with ethereal, and I'm seeing a failure at what appears to be the tftp stage. The M10000 picks up its IP address from the dhcp server (ISC DHCP3), and reports it correctly on the screen. Then the tftp session starts, and I get the

I am running Windows 7 Professionaly 64-bit with domain membership to a Samba domain. I have noticed some weird behaviour. 1) For some reason, dhcp3-server does not add the forward dns entry into bind9. This works perfectly with Windows 7 if it is not a domain member, or other operating systems (XP, OS/X and Linux). I know this isn't specifically a Samba issue, but I thought I should mention

Hi, Here are two fixes for ipconfig/dhcp, the second of them being required for my dhcp3 server to accept ipconfig's requests. Thanks, Louis Louis Rilling (2): ipconfig: Fix missing dhcp_end field ipconfig: Fix null ciaddr on DHCPREQUEST during SELECTING state usr/kinit/ipconfig/dhcp_proto.c | 4 ++-- usr/kinit/ipconfig/packet.c | 2 +- 2 files changed, 3

Hello ! I'm french, my english is bad :-( I want to boot a computer by network which have a 3Com network card. So I use isc-DHCP, TFTP-hpa and PXELinux. The computer start, make a dhcp request, receive the configuration. The next step is to contact the tftp server to get pxelinux.0 and the configuration. Stop me if I made an error ;) So, in the network I want to use it, there is a dhcp

Hi there, I have a Samba+LDAP Debian box as a primary domain controller. I configured the server in order to support roaming profiles. Everything is working perfectly. Roaming profiles are loaded and saved correctly from the server for every user on the domain. The big problem is this: after typing username and password from a Windows XP client computer, it starts reading the profile from the

Hello all, I spent a couple of days figuring this out, and I found some related posts without solutions, so I figured I would sent this to the list. We run a small local network here with a mixed bag of Windows XP / 2000 / Linux clients. We have been using Samba to allow access to a set of shared printers using a linux server. We also have a separate linux server that handles our file serving