Displaying 20 results from an estimated 7000 matches similar to: "Shorewall and Multiple Internet Connections"
2007 Nov 07
5
shorewall compile as non-root user
Hello,
please excuse me if this has been discussed or even solved before, but
I could not find it in the archives.
I''m in the process of migrating several gateways to shorewall-lite,
keeping the configfiles on one central adminstrative machine,
basically following the guide at
http://www.shorewall.net/CompiledPrograms.html .
As I understand it, the local /etc/shorewall directory on the
2007 Aug 06
3
how do I use shorewall to protect server from ARP spoofing attack ?
My firewall is using shorewall 3.0.x and CentOS
Recently, I found that firewall is attaching from ARP spoofing..
There are a lot of "out of socket memory" in messages log
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and
2007 Aug 20
6
have to restart shorewall after a dynamic IP change
Hi,
I''ve to restart shorewall when my dynamic IP was changed from my ISP.
Of course i can with a shell script do it automatically, but the
question is still there.. why ?
mess-mate
--
"I understand this is your first dead client," Sabian was saying. The
absurdity of the statement made me want to laugh but they don''t call me
Deadpan
2007 Aug 13
4
Problem with iprange in shorewall 4.0.2
Hi,
I have the following problem while activating this rule entry using shorewall-shell:
ACCEPT:notice:rul WAN:139.x.x.226 INT:139.x.x.153-139.x.x.156 udp 1024:65535 1024:65535
"-m iprange" in front of "--dst-range" is missing in the activation command.
The logging entry (above) is set correct.
Below is the debug output.
Thanks
Regards
Günter
+ case $level in
+
2007 Nov 09
3
Shorewall + Squid transparent + Apache
I remember to see something about that in shorewall.net some time ago,
but I could not find it today ...
The case :
Debian Etch, Shorewall 3.2.6, squid3 and Apache 2 .
The first 3 where already running fine for some time ...
Now I need to setup an Apache server to allow some web mannagement,
things like PHPsysinfo, phppgadmin, just for internal net, no web access .
but port 80 is redirected to
2007 Oct 23
2
Is it possible to stop ARP broadcast with Bridge shorewall ?
Dear shorewall list enthusiasts,
I recently set up a dedicated linux box running shorewall
in order to isolate my network from the "evil other side" :)
It works so well that I first have to thank and congratulate
everybody that took part in this project !
Then, I have a question, that separates my setup from "wonderful"
to "heaven" : I activated the
2007 Aug 15
8
Shorewall and printing problems in the LAN ( loc ) zone
Guys,
Just a quick check. From what i have read in the
shorewall site, intrazone traffic is allowed
completely by shorewall i.e. there is no filtering or
packet size limiting ,etc,etc.
I ask this becos after getting shorewall up and
running well, someone has complained that they cannot
print pdf files larger than 100k at one go but that
they have to print one page at a time.
Some details;
2019 Mar 19
2
Migration to samba4 ad and sync to openldap.
On 3/19/19 2:52 PM, Rowland Penny via samba wrote:
> On Tue, 19 Mar 2019 14:04:27 -0500
> John McMonagle <johnm at advocap.org> wrote:
>
>> I'm open to alternatives but need to be up and running 24/7 on the
>> linux side.
>> My boss hates windows more than I do and will likely be looking for a
>> new job if I use windows to administer the the linux side.
2007 Sep 03
3
Shorewall + IPSec: help debugging why gw1<->gw2 SA works, but loc<->gw2 traffic doesn't trigger SA
Dear list,
I''m running Shorewall on a dedicated Fedora 7 box. Shorewall is working
well as an office DSL router (dynamic IP) with loc and dmz zones. I am now
trying to configure IPSec to connect a VPS, "casp", with a static IP to both
the firewall and to the loc network behind it. The host to host SA works
fine. However, pings from "loc" to "casp" can be
2007 Aug 24
13
Shorewall 3.4.x - Error when (re) starting - segmentation fault
Shorewall 3.4.6 running on SuSE Linux 10.2
Compiling Rule Activation...
Shorewall configuration compiled to /var/lib/shorewall/.restart
Processing /etc/shorewall/params ...
Restarting Shorewall....
/sbin/shorewall: line 665: 6782 Segmentation fault
$SHOREWALL_SHELL ${VARDIR}/.restart $debugging restart
got this with V3.4.4, updated to 3.4.6 this morning, but that didn''t help.
2007 Sep 03
1
Virtual Bridge & Shorewall Question
Hi,
I am in the process of conteinerization of server infrastructure, and my idea
is to run telephony server appliance Trixbox under KVM (which in tuen uses
QEMU codebase) on SuSE Linux.
KVM networking is rather primitive, and the only way to make KVM''ed OS seen
as "normal" computer is to use virtual bridge as I found on net.
The questions are (based on the
2019 Mar 19
2
Migration to samba4 ad and sync to openldap.
I'm open to alternatives but need to be up and running 24/7 on the linux
side.
My boss hates windows more than I do and will likely be looking for a
new job if I use windows to administer the the linux side.
We only use windows if there is no other way do do something.
On 3/19/19 12:08 PM, Rowland Penny via samba wrote:
> On Tue, 19 Mar 2019 11:03:12 -0500
> John McMonagle via samba
2019 Apr 06
1
Migration to samba4 ad and sync to openldap.
On 4/4/19 3:18 PM, Rowland Penny via samba wrote:
> On Thu, 4 Apr 2019 14:09:18 -0500
> John McMonagle via samba <samba at lists.samba.org> wrote:
>
>> I managed to do migration using "classicupgrade".
>> Doing tests with debian buster 2:4.9.4+dfsg-4.
>> For the moment using samba internal dns and sub-domain of
>> ad.advocap.org. Had issue
2006 Feb 12
11
Local Network Can't Get Past Shorewall to the Internet
Greetings all,
I have just install Shorewall on a Debian system and
I''m using it as a firewall on an internal network.
The specifics of the system are as follows:
firewall:/var/log# shorewall version
3.0.4
firewall:/var/log# uname -a
Linux firewall 2.6.12-1-386 #1 Tue Sep 27 12:41:08 JST
2005 i586 GNU/Linux
Shorewall start successfully and $FW can connect to
the Internet for upgrading
2005 Jul 28
3
Routing for multiple uplinks/providers problem.
Been running this for quite a while and noticed that have intermittent
problems getting out.
Find that if I ping the same site from 2 computers it may work on one
and fail on the other.
Also was surprised that some time they are going out different
interfaces at the same time.
Seems to work all the time from the firewall.
Running 2.6.10 kernel with the multipath routing patches on a debian
2011 Oct 10
2
several problem with shorewall and Multi-port Match: Available
hello list shorewall
I encounter serious problems with this
Multi-port Match: Available
.
my custom kernels do not provide this option that prevents me from compiling
shorewall 6
plesase correct this maybe a bug fix
--
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7
gpg --keyserver pgp.mit.edu --recv-key 092164A7
http://urlshort.eu fakessh @
2005 Nov 29
2
Use shorewall for count traffic usage on a interface
Hi
i have a small problems on one of my interface : i can''t get traffic out
and don''t know why.
Ither user say me that i can use Shorewall for create the counter and
after get the information for
mrtg. Anyone know what is the process into shorewall 2.0.X ?
i don''t want monitor by specified port, but all ports
Thanks for your help
2007 Jul 29
12
Shorewall 4.0.0 + Kernel 2.6.21.5-grsec
Hello,
My hoster updated its kernel packages... It contained some old problems
that should have been fixed. My servers have now a wonderful 2.6.21.5
kernel + grsec running.
Both are running Debian 4.0 (stable release).
mx:/etc/shorewall# iptables --version
iptables v1.3.6
mx:/etc/shorewall# uname -a
Linux mx.network-hosting.com 2.6.21.5-grsec-xxxx-grs-ipv4-32 #1 SMP Fri
Jul 27 17:18:23 CEST
2011 Dec 04
6
Shorewall 4.4.27 Beta 1
Beta 1 is now available for testing.
One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs.
To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the
2011 Dec 04
6
Shorewall 4.4.27 Beta 1
Beta 1 is now available for testing.
One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs.
To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the