Displaying 20 results from an estimated 1000 matches similar to: "Can't load nf_conntrack_ipv4"
2007 Sep 11
3
BLocm Amule
Hi peploe, i am new in the list,
i need know, how blocked the Amule/emule in shorewall?
My dist. debian
version: 3.2.6-shorewall
--
.~.
/ v \ Seja Livre, use GNU/Linux!
/( )\
^^-^^
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
2007 Nov 27
4
L7-Filter
Hi!
How I can use L7-Filter (http://l7-filter.sourceforge.net/) with Shorewall?
Thank you very much!
Bye.
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
2007 Nov 20
11
rfc1918 on external interface
Please, help me. Can i forbid and how any outgoing traffic
(ping,trace) to rfc1918 networks on my external interfaces?
Thank you very much.
Aleksandr
--------------------
Продукция AcmePower - это зарядные устройства, аккумуляторы формата АА
и ААА, сетевые адаптеры, аккумуляторные батареи для фото и видеокамер,
ноутбуков и PDA. Гарантия минского сервисного центра.
2007 Nov 23
14
Port 3001 still have problem
Hello,
We are using shorewall-3.0.7-1, I was tried the video conference server doesn''t via shorewall that was no problem, can I upgrade shorewall version to fix this problem ? our boss need use video conference this few days, so this is emergency.
Thx ~~
---------------------------------
Yahoo! 網上安全攻略,教你如何防範黑客! 了解更多
2008 Mar 10
2
When starting shorewall its display rfc1981 error
Hello ,
The folllowing is the error problem:
Validating interfaces file...
ERROR: The ''norfc1918'' option may not be specified on an interface with an RFC 1918 address. Interface:eth2
The shorewall interface file:
net eth2 detect tcpflags,routefilter,norfc1918,nosmurfs,logmartians
P.S. I tried to remove norfc1918 from interface
2008 Feb 25
3
shorewall 4 installation requirements
Are shorewall-shell and shorewall-common required at
compile time even if one only wishes to use
shorewall-perl (4.0.9)?
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
2008 Mar 13
15
using norfc1918
Hello Tom.
Sorry, don't answer on my previouse letter, i forget to set
subject. I fix this in current. And now about my question.
I ask you before about method of stopping RFC1918 traffic on
external interface and you advised me follow rule:
REJECT! all net:$RFC1918_NETS
Can i replace this rule by 'norfc1918' option in 'interfaces'
file for this interface?
2007 Nov 21
9
Trouble with DNAT After Upgrade
I''ve upgraded a 3-interface system from 2.0.8 to 3.2.6 on Debian, and I''m not
able to make DNAT work anymore. If someone could offer a suggestion of where
to look to fix this, it would be very much appreciated.
Problem Summary:
If I set DETECT_DNAT_IPADDRS=Yes, then I can''t access anything on my DMZ via
DNAT.
If I set DETECT_DNAT_IPADDRS=No, then **EVERYTHING**
2007 Nov 21
9
Trouble with DNAT After Upgrade
I''ve upgraded a 3-interface system from 2.0.8 to 3.2.6 on Debian, and I''m not
able to make DNAT work anymore. If someone could offer a suggestion of where
to look to fix this, it would be very much appreciated.
Problem Summary:
If I set DETECT_DNAT_IPADDRS=Yes, then I can''t access anything on my DMZ via
DNAT.
If I set DETECT_DNAT_IPADDRS=No, then **EVERYTHING**
2008 Feb 18
9
Advice on vlans and pppoe
My telco is moving to feeding me over fiber, breaking out with a media
converter to one Ethernet interface. At present, I am retaining the
static feed over copper on eth0, and taking the two new feeds via vlans
on eth1. I have configured the static IP feed on eth1:790 as vlan 790,
and that seems to be fine, and eth1:780 as the PPPOE feed, and brought
up PPPOE to give me an IP, that is
2007 Nov 15
3
ip6tables can't initialize ip6tables table filter
Hi list!
I am configuring Shorewall on a Xen domU virtual machine.
I configured only the zones, interfaces, rules, policy and shorewall.conf files.
When I run "shorewall check" there aren''t no problems, but when I try
to start shorewall I get this error a lot of time:
iptables: Invalid argument
ip6tables v1.3.6: can''t initialize ip6tables table `filter'': Bad
2008 Feb 29
5
shorewall-perl not handling "logmartians" correctly
I''ve set up a simple 2-interface Linux router using shorewall-perl 4.0.8
(and upgraded to 4.0.9). Everything works flawlessly. One small
exception I have noticed (since I''m a new shorewall user I
assume this is probably an error on my part).
1. Problem:
With no "logmartians" entries in /etc/shorewall/interfaces,
shorewall-perl sets
2007 Sep 12
21
MultiISP: failover and dynamic IP
Dear list,
Shorewall is running here with 2 ISP''s:
ISP1: corporate ADSL-line with fixed set of IP''s
ISP2: fast consumer-grade cable-connection with higher bandwidth
All our main traffic (web, e-mail) is routed trough ISP1. Only for
special purposes (frequent large ftp-transfers) ISP2 is used, configured
trough tcrules.
ISP2 is not so reliable as ISP1 (duh) and they sometimes
2008 Feb 18
4
OpenVPN (bridge) -- is this a shorewall issue?
I am trying to make the following connection:
WindowsXP(OpenVPN-Client)->shorewall->Internet->LinksysWRTG->OpenVPN-Server
...of course the reverse path too.
The OpenVPN server is running in bridge mode.
When the openVPN client is launched it looks like a successful connection is made. The openVPN client
gets assigned an address from the openVPN server pool. The OpenVPN
2008 May 23
5
Shorewall is eating my Asterisk egress traffic
I have four-interface Shorewall config set up. The "dmz" interface is
bridged with "net" so I can assign public IP''s to the servers in the DMZ. I
opted to do this rather than SNAT or ARP proxying because one of the servers
runs Asterisk and SIP and NAT don''t always work well together. Somehow, my
firewall config is causing a one-way audio problem in
2008 Mar 13
3
Local network access to VPN
Hi,
I have a linux box with vpn client.
shorewall version 3.4.0
I can connect to a remote vpn network with the nortel vpn client.
Can I allow local machines on my network to access remote vpn using
Linux box as a gateway?
Thanks and Regards
Anuj
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges.
2008 May 30
2
one-to-one NAT on RFC1918 addresses
In my peculiar setup I need my shorewall router to do
one-to-one NAT with RFC1918 addresses.
The "external" addresses are 10.215.0.0 and the
internal addresses are 192.168.0.0.
I can ping, vnc, http, smb from 10.215.144.48 to
10.215.145.237 which is 192.168.44.237 internally.
>From 192.168.44.237 I can do http, rdp, ping to
10.215.0.0 hosts.
So all seems fine except for the fact
2008 Jun 02
4
Syn Flood Attack to SMTP server
Hello everyone, is a pleasure to be here.
I have a problem with my server, it runs qmail SMTP and protect it with
shorewall. Since yesterday I get syn flood attacks on port 25, which means
that no longer meet. How can I stop this with shorewall?
my setup is as follows.
zones:
#ZONE DISPLAY COMMENTS
net Net Internet
loc Local Local networks
dmz DMZ
2008 Jan 31
10
QoS Sample config ?
Hi
I am search a sample config for my linux box:
Shorewall 3.2.3
Eth0 => Internet Access 4Mbits on ethernet
Eth1 => Lan
Eth2 => Lan 2
Eth3 => Lan 3
i want limit the internet access:
Eth1 = 2 Mbits
Eth2 = 0,5 Mbits
Eth3 = 1,5 Mbits
but if eth1 don''t use 2 Mbits other lan can use it
anyone have a simple sample config for help me ?
Thanks bye
2007 Nov 20
3
Shorewall 4.1.0
I''ve opened up development of Shorewall 4.1.
While I had previously announced that Shorewall 4.1 would focus on IPv6, I
have since learned that the netfilter team are developing ''xtables'', a
unified IP0v4/IPv6 utility. It seems silly to spend the effort to add
Shorewall support for IPv6 only to then have to turn around and convert it
to use xtables. So I''ve