Displaying 20 results from an estimated 600 matches similar to: "[Bug 819] New: ipset create setname timeout 2147484 records greater timeout"
2011 Aug 02
3
[Bug 733] New: ipset restore won't restore from output of ipset save
http://bugzilla.netfilter.org/show_bug.cgi?id=733
Summary: ipset restore won't restore from output of ipset save
Product: ipset
Version: unspecified
Platform: All
OS/Version: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
Component: default
AssignedTo: netfilter-buglog at
2019 Apr 26
2
faI2ban detecting and banning but nothing happens
On Saturday 20 April 2019 00:32:43 Pete Biggs wrote:
> What ban action do you use? If it's something like iptables-multiport,
> then I wonder if the fact that it's detecting the failures as
> '[dovecot]' means that it's using the dovecot ports, not the exim
> ports, when applying the iptable rule.
>
> When a host has been banned, can you look at the
2017 Jul 19
3
under some kind of attack
Hi Robert,
On 07/18/2017 11:43 PM, Robert Schetterer wrote:
> i guess not, but typical bots arent using ssl, check it
>
> however fail2ban sometimes is to slow
I have configured dovecot with
auth_failure_delay = 10 secs
I hope that before the 10 sec are over, dovecot will have logged about
the failed login attempt, and fail2ban will have blocked the ip by then.
MJ
2019 Apr 19
2
faI2ban detecting and banning but nothing happens
On Friday 19 April 2019 15:19:26 Pete Biggs wrote:
> > I've added a fail regex to /etc/fail2ban/filter.d/exim.conf as suggested
> > on another page:
>
> The standard exim.conf already has a 535 filter. Was that not working
> for you?
I was following the instructions as shown on the page. I did find after
sending my post that there was already a regex in the standard
2016 Dec 09
4
[Bug 1101] New: SET target unreliable in iptables - add does not work as expected
https://bugzilla.netfilter.org/show_bug.cgi?id=1101
Bug ID: 1101
Summary: SET target unreliable in iptables - add does not work
as expected
Product: netfilter/iptables
Version: unspecified
Hardware: x86_64
OS: Debian GNU/Linux
Status: NEW
Severity: major
Priority: P5
2013 Aug 12
2
[Bug 840] New: Specifying CIDR when adding to a hash:ip entry is silently ignored
https://bugzilla.netfilter.org/show_bug.cgi?id=840
Summary: Specifying CIDR when adding to a hash:ip entry is
silently ignored
Product: ipset
Version: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: minor
Priority: P5
Component: default
AssignedTo:
2004 Jul 13
2
FreeBSD and MySQL error
Greetings
I have been installed dovecot-0.99.10.6 in my FreeBSD 4.10 with
WITH_MYSQL=1 , but when I try to configure it to use mysql.conf file:
auth_userdb = mysql /usr/local/etc/dovecot-mysql.conf
auth_passdb = mysql /usr/local/etc/dovecot-mysql.conf
the program gives me the next error:
dovecot: Jul 13 10:49:03 Info: Dovecot starting up
dovecot-auth: Jul 13 10:49:04 Fatal: Unknown userdb type
2013 Dec 03
8
[Bug 880] New: ipset doesn't refresh the timeout for an existing entry when the table is FULL.
https://bugzilla.netfilter.org/show_bug.cgi?id=880
Summary: ipset doesn't refresh the timeout for an existing
entry when the table is FULL.
Product: ipset
Version: unspecified
Platform: x86_64
OS/Version: Fedora
Status: NEW
Severity: normal
Priority: P5
Component: default
2019 Oct 08
2
[Bug 1369] New: ipset save|list -sorted sorts alphabetically instead of naturally
https://bugzilla.netfilter.org/show_bug.cgi?id=1369
Bug ID: 1369
Summary: ipset save|list -sorted sorts alphabetically instead
of naturally
Product: ipset
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: default
2012 Sep 30
12
shorewall dynamic zones confusion
Hi,
I''ve been successfully using shorewall in our K12 school since the 2.x
days initially on Mandrake and now on Debian. Because of that my config
has got quite complicated. The firewall has a working MultiISP setup
with four interfaces (I''ve renamed them with udev to easy their
identification): lan-if, dmz-if, snt-if and dnt-if (one of the providers
(the one on dnt-if) is a DSL
2023 Oct 25
4
[Bug 1719] New: ipset wrongly blocking undefined ranges and not blocking ranges that are defined
https://bugzilla.netfilter.org/show_bug.cgi?id=1719
Bug ID: 1719
Summary: ipset wrongly blocking undefined ranges and not
blocking ranges that are defined
Product: ipset
Version: unspecified
Hardware: All
OS: RedHat Linux
Status: NEW
Severity: critical
Priority: P5
2007 Apr 18
1
Can''t change ipt_conntrack hashsize under debian sarge ???
Hello,
I''ve tried to change ipt_conntrack hashsize and con under my debian
charge but doesn''t work !
Ive got 2876Mb available for conntrack so I''ve done (according to some
previous mail and this
http://www.wallfire.org/misc/netfilter_conntrack_perf.txt)
CONNTRACK_MAX = 2876 * 64 = 184064
HASHSIZE = 2876 * 8 = 23002
But the near power of 2 is 2^16 = 131072
2023 Dec 05
3
[Bug 1726] New: invalid json generated by ipset list -output json
https://bugzilla.netfilter.org/show_bug.cgi?id=1726
Bug ID: 1726
Summary: invalid json generated by ipset list -output json
Product: ipset
Version: unspecified
Hardware: x86_64
OS: Debian GNU/Linux
Status: NEW
Severity: trivial
Priority: P5
Component: default
Assignee:
2011 May 13
2
Modify Parameters at system boot
Hi all.
i'm trying to modify some parameters but when system reboots it doesn't
load. For the sysctl if I run sysctl -p then it changes
/etc/sysctl.conf
net.ipv4.netfilter.ip_conntrack_max = 1048576
/etc/modprobe.conf
options ip_conntrack hashsize=131072
after reboot results
cat /proc/sys/net/ipv4/netfilter/ip_conntrack_max
65536
cat
2005 Aug 15
11
Hardware Configuration Ideas
Hey guys,
I am planning to buy some components for a Linux router that will handle the
Internet access of 200 computers (includes tc shaping) and some inter
sub-network routing (at least 100MBps per eth - and there are 3 eth cards).
I was thinking of a:
Pentium 4 - 3GHz
256 or 512MB RAM
Network Cards.
Now - I wonder what is more important: the processor speed or the amount of
RAM.
And can you
2013 Aug 13
3
[Bug 844] New: Can set apparently invalid netmask for hash:ip
https://bugzilla.netfilter.org/show_bug.cgi?id=844
Summary: Can set apparently invalid netmask for hash:ip
Product: ipset
Version: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P5
Component: default
AssignedTo: netfilter-buglog at lists.netfilter.org
2013 Aug 13
1
[Bug 843] New: ipset swap doesn't behave as expected
https://bugzilla.netfilter.org/show_bug.cgi?id=843
Summary: ipset swap doesn't behave as expected
Product: ipset
Version: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: minor
Priority: P5
Component: default
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy:
2006 Apr 18
1
Route cache
Hi,
I have a P4 @ 3Ghz router running Debian. It shapes traffic ( about
500-600 classes ), about 1000 iptables rules, and it does BGP too, so i get
about
1300+ routes in the routing table. The problem is the load is too high on
this system. I found a solution to my problem, turning off the route cache,
but i dont know how to implement it,
I was wondering if anyone found a way to disable the
2004 Nov 27
6
Finally making some progress
I *think* we are finally making some progress in tracking our elusive
performance problems. After employing a second 10Mb link from our ISP,
along with another firewall box and proxy, we were able to determine the
problem *is* our firewall. We don''t know exactly why yet, but our sporadic
slow web access seems to have gone away since swapping a new firewall
in this morning.
The
2017 Jun 16
2
[Bug 1158] New: using old session data when piping multiple commands
https://bugzilla.netfilter.org/show_bug.cgi?id=1158
Bug ID: 1158
Summary: using old session data when piping multiple commands
Product: ipset
Version: unspecified
Hardware: x86_64
OS: Ubuntu
Status: NEW
Severity: minor
Priority: P5
Component: default
Assignee: netfilter-buglog