similar to: Shorewall and Multiple Internet Connections

Displaying 20 results from an estimated 7000 matches similar to: "Shorewall and Multiple Internet Connections"

2007 Nov 07
5
shorewall compile as non-root user
Hello, please excuse me if this has been discussed or even solved before, but I could not find it in the archives. I''m in the process of migrating several gateways to shorewall-lite, keeping the configfiles on one central adminstrative machine, basically following the guide at http://www.shorewall.net/CompiledPrograms.html . As I understand it, the local /etc/shorewall directory on the
2007 Aug 06
3
how do I use shorewall to protect server from ARP spoofing attack ?
My firewall is using shorewall 3.0.x and CentOS Recently, I found that firewall is attaching from ARP spoofing.. There are a lot of "out of socket memory" in messages log ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and
2007 Aug 20
6
have to restart shorewall after a dynamic IP change
Hi, I''ve to restart shorewall when my dynamic IP was changed from my ISP. Of course i can with a shell script do it automatically, but the question is still there.. why ? mess-mate -- "I understand this is your first dead client," Sabian was saying. The absurdity of the statement made me want to laugh but they don''t call me Deadpan
2007 Aug 13
4
Problem with iprange in shorewall 4.0.2
Hi, I have the following problem while activating this rule entry using shorewall-shell: ACCEPT:notice:rul WAN:139.x.x.226 INT:139.x.x.153-139.x.x.156 udp 1024:65535 1024:65535 "-m iprange" in front of "--dst-range" is missing in the activation command. The logging entry (above) is set correct. Below is the debug output. Thanks Regards Günter + case $level in +
2007 Nov 09
3
Shorewall + Squid transparent + Apache
I remember to see something about that in shorewall.net some time ago, but I could not find it today ... The case : Debian Etch, Shorewall 3.2.6, squid3 and Apache 2 . The first 3 where already running fine for some time ... Now I need to setup an Apache server to allow some web mannagement, things like PHPsysinfo, phppgadmin, just for internal net, no web access . but port 80 is redirected to
2007 Oct 23
2
Is it possible to stop ARP broadcast with Bridge shorewall ?
Dear shorewall list enthusiasts, I recently set up a dedicated linux box running shorewall in order to isolate my network from the "evil other side" :) It works so well that I first have to thank and congratulate everybody that took part in this project ! Then, I have a question, that separates my setup from "wonderful" to "heaven" : I activated the
2007 Aug 15
8
Shorewall and printing problems in the LAN ( loc ) zone
Guys, Just a quick check. From what i have read in the shorewall site, intrazone traffic is allowed completely by shorewall i.e. there is no filtering or packet size limiting ,etc,etc. I ask this becos after getting shorewall up and running well, someone has complained that they cannot print pdf files larger than 100k at one go but that they have to print one page at a time. Some details;
2019 Mar 19
2
Migration to samba4 ad and sync to openldap.
On 3/19/19 2:52 PM, Rowland Penny via samba wrote: > On Tue, 19 Mar 2019 14:04:27 -0500 > John McMonagle <johnm at advocap.org> wrote: > >> I'm open to alternatives but need to be up and running 24/7 on the >> linux side. >> My boss hates windows more than I do and will likely be looking for a >> new job if I use windows to administer the the linux side.
2007 Sep 03
3
Shorewall + IPSec: help debugging why gw1<->gw2 SA works, but loc<->gw2 traffic doesn't trigger SA
Dear list, I''m running Shorewall on a dedicated Fedora 7 box. Shorewall is working well as an office DSL router (dynamic IP) with loc and dmz zones. I am now trying to configure IPSec to connect a VPS, "casp", with a static IP to both the firewall and to the loc network behind it. The host to host SA works fine. However, pings from "loc" to "casp" can be
2007 Aug 24
13
Shorewall 3.4.x - Error when (re) starting - segmentation fault
Shorewall 3.4.6 running on SuSE Linux 10.2 Compiling Rule Activation... Shorewall configuration compiled to /var/lib/shorewall/.restart Processing /etc/shorewall/params ... Restarting Shorewall.... /sbin/shorewall: line 665: 6782 Segmentation fault $SHOREWALL_SHELL ${VARDIR}/.restart $debugging restart got this with V3.4.4, updated to 3.4.6 this morning, but that didn''t help.
2007 Sep 03
1
Virtual Bridge & Shorewall Question
Hi, I am in the process of conteinerization of server infrastructure, and my idea is to run telephony server appliance Trixbox under KVM (which in tuen uses QEMU codebase) on SuSE Linux. KVM networking is rather primitive, and the only way to make KVM''ed OS seen as "normal" computer is to use virtual bridge as I found on net. The questions are (based on the
2019 Mar 19
2
Migration to samba4 ad and sync to openldap.
I'm open to alternatives but need to be up and running 24/7 on the linux side. My boss hates windows more than I do and will likely be looking for a new job if I use windows to administer the the linux side. We only use windows if there is no other way do do something. On 3/19/19 12:08 PM, Rowland Penny via samba wrote: > On Tue, 19 Mar 2019 11:03:12 -0500 > John McMonagle via samba
2019 Apr 06
1
Migration to samba4 ad and sync to openldap.
On 4/4/19 3:18 PM, Rowland Penny via samba wrote: > On Thu, 4 Apr 2019 14:09:18 -0500 > John McMonagle via samba <samba at lists.samba.org> wrote: > >> I managed to do migration using "classicupgrade". >> Doing tests with debian buster 2:4.9.4+dfsg-4. >> For the moment using samba internal dns and sub-domain of >> ad.advocap.org. Had issue
2006 Feb 12
11
Local Network Can't Get Past Shorewall to the Internet
Greetings all, I have just install Shorewall on a Debian system and I''m using it as a firewall on an internal network. The specifics of the system are as follows: firewall:/var/log# shorewall version 3.0.4 firewall:/var/log# uname -a Linux firewall 2.6.12-1-386 #1 Tue Sep 27 12:41:08 JST 2005 i586 GNU/Linux Shorewall start successfully and $FW can connect to the Internet for upgrading
2005 Jul 28
3
Routing for multiple uplinks/providers problem.
Been running this for quite a while and noticed that have intermittent problems getting out. Find that if I ping the same site from 2 computers it may work on one and fail on the other. Also was surprised that some time they are going out different interfaces at the same time. Seems to work all the time from the firewall. Running 2.6.10 kernel with the multipath routing patches on a debian
2011 Oct 10
2
several problem with shorewall and Multi-port Match: Available
hello list shorewall I encounter serious problems with this Multi-port Match: Available . my custom kernels do not provide this option that prevents me from compiling shorewall 6 plesase correct this maybe a bug fix --  http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7  gpg --keyserver pgp.mit.edu --recv-key 092164A7 http://urlshort.eu fakessh @
2005 Nov 29
2
Use shorewall for count traffic usage on a interface
Hi i have a small problems on one of my interface : i can''t get traffic out and don''t know why. Ither user say me that i can use Shorewall for create the counter and after get the information for mrtg. Anyone know what is the process into shorewall 2.0.X ? i don''t want monitor by specified port, but all ports Thanks for your help
2007 Jul 29
12
Shorewall 4.0.0 + Kernel 2.6.21.5-grsec
Hello, My hoster updated its kernel packages... It contained some old problems that should have been fixed. My servers have now a wonderful 2.6.21.5 kernel + grsec running. Both are running Debian 4.0 (stable release). mx:/etc/shorewall# iptables --version iptables v1.3.6 mx:/etc/shorewall# uname -a Linux mx.network-hosting.com 2.6.21.5-grsec-xxxx-grs-ipv4-32 #1 SMP Fri Jul 27 17:18:23 CEST
2011 Dec 04
6
Shorewall 4.4.27 Beta 1
Beta 1 is now available for testing. One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs. To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the
2011 Dec 04
6
Shorewall 4.4.27 Beta 1
Beta 1 is now available for testing. One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs. To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the