Displaying 20 results from an estimated 10000 matches similar to: "[Bug 912] New: Iptables resets ALL the counters within a chain, not only the specified ones"
2017 Jan 30
0
Help with iptables && tinc
Here is an extract of my current iptables that are not working:
iptables -L -n -v
Chain INPUT (policy DROP 8 packets, 1120 bytes)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT tcp -- lo * 0.0.0.0/0
0.0.0.0/0 tcp dpt:3306
0 0 ACCEPT udp -- lo * 0.0.0.0/0
0.0.0.0/0 udp dpt:3306
2012 Feb 14
1
iptables nat PREROUTING chain
Is there a way to add a rule to the nat table (CentOS 5.7) that would
alter the port number of tcp packets destined for the server itself? I
have ip_forwarding enabled, but the packets don't seem to hit the
prerouting chain.
I have the following redirect rule in the prerouting table. I also
tried DNAT, but if the packets don't hit PREROUTING, it won't work either.
iptables -t nat
2019 Dec 11
4
[Bug 1390] New: iptables -m string not working with --algo bm and OUTPUT chain under 5.3.x
https://bugzilla.netfilter.org/show_bug.cgi?id=1390
Bug ID: 1390
Summary: iptables -m string not working with --algo bm and
OUTPUT chain under 5.3.x
Product: netfilter/iptables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: normal
Priority: P5
2005 Nov 23
0
so close! an iptables rule away.....
Hi,
I''ve been making leaps and strides with Xen on FC4. It has been easy
to get installed and to start our first virtual host.
I''ve got one outstanding issue with iptables that is preventing me
progressing further.
This is a colo''d server. It has s single NIC with public IPs.
The bridge is set to come up binding vif* <> xen-br0 <> eth1.
I can start a
2016 Mar 01
0
nwfilter : iptables rules not working
Hi,
I contact you as i have difficulties to use nwfilter with KVM host.
I want to implemente flow filtering between my Linux guests.
I created the following filter :
cat admin-dmz-internet.xml
<filter name='admin-dmz-internet'>
<!-- this zone is an SSH ingoing only zone -->
<!-- but SSH can go to an other SSH proxy -->
<filterref
2011 Mar 18
0
libvirtd -- iptables
Hi All,
I created a couple of virtual networks (forward mode=nat) in my
rhel6-kvm box. I've come across 2 weird issues.
1. My Iptables rule chainset contains repeated rules. The same rule gets
repeated block by block
2. For connecting to guest using SSH, I created a custom IPTables chain.
I want this chain to be on top of the FORWARD chain, but everytime the
libvirtd is restarted the rule
2017 Jan 30
1
Help with iptables && tinc
Can you post your Tinc configuration too?
El lun., 30 ene. 2017 a las 11:42, Dave Albert (<dave.albert at gmail.com>)
escribió:
> Here is an extract of my current iptables that are not working:
>
> iptables -L -n -v
>
> Chain INPUT (policy DROP 8 packets, 1120 bytes)
> pkts bytes target prot opt in out source
> destination
> 0 0
2003 Feb 27
3
Unknown commments in shorewall status.
I wonder if someone can tell me what these ''unknown'' remarks mean in my
status file. They are only in the last portion of the file and are listed
below. If they mean nothing, I will rest easy. But if not it means
I need to fix something. Your thoughts would be appreciated.
----------------
udp 17 92 src=24.224.173.220 dst=24.222.0.75 sport=1027 dport=53
src=24.222.0.75
2005 Nov 24
2
so close! just an iptables rule away.....?
Hi,
I''ve been making leaps and strides with Xen on FC4. It has been easy to get
installed and to start our first virtual host.
I''ve got one outstanding issue with iptables that is preventing me
progressing further.
This is a colo''d server. It has s single NIC with public IPs.
The bridge is set to come up binding vif* <> xen-br0 <> eth1.
I can start a
2019 Apr 24
0
Iptables blocks out going connetion some times
On Wed, 24 Apr 2019 at 06:01, likun <kun.li at ucarinc.com> wrote:
> Hi?guys.
>
> There is a wierd problem with iptables recently, hopes somebody can help
> me.
>
> I have installed Centos 7.2.1511 on a bare metal Dell server these days,
> disabled firewalld and enabled iptables.services, and setup a group of very
> simple rules, as the following:
>
>
I believe
2011 Sep 06
2
[Bug 747] New: IPtables marked packets not being inpsected in NAT table.
http://bugzilla.netfilter.org/show_bug.cgi?id=747
Summary: IPtables marked packets not being inpsected in NAT
table.
Product: iptables
Version: CVS (please indicate timestamp)
Platform: All
OS/Version: All
Status: NEW
Severity: major
Priority: P3
Component: iptables
AssignedTo:
2005 Aug 02
0
iptables -m layer7 - doesn''t work
I''ve compiled my kernel (2.6.12.3) and iptables (1.3.3) and now -m
layer7 option from iptables works (i don''t get any error when run the
iptables command with -m layer7).
The problem is that no packet is matched. For example iptables -A INPUT
-p tcp -m layer7 --l7proto http -j ACCEPT doesn''t match http packets.
The same for dns and ssh.
So, what am I doing wrong? Is this
2007 Feb 04
3
Reproducable failure with rsync, iptables and RHEL4
Hello!
I have a consistent, reproducable failure performing an rsync of an
RHEL4 system running rsync in daemon mode with iptables enabled. With
iptables disabled, or with a rule that explicitly allows all traffic,
the rsync completes. However, with iptalbes enabled, the rsync starts,
but will not finish. It fails after copying a seemingly random amount
of data.
I have been able to
2005 Feb 28
1
Mail server on DMZ
Hello,
I have this problem: when my mail server on the DMZ starts a connection to
the internet it''s ip (213.58.230.26) is "masqueraded" with the firewall ip
(213.58.230.50). I wouldn''t mind but there is a one customer who rejects the
connection because it makes reverse dns and finds no dns entry for the
firewall ip.
How can i correct this?
Thanks,
MSantos
shorewall
2004 Sep 22
2
IPSEc versus Multipath routing
Firstly I don''t think this is a shorewall problem, but I suspect shorewall
might be able to solve it for me.
I''ve posted this so far at
http://mandrakeusers.org/index.php?showtopic=18942
I''ve stumble upon a problem that has me stumped
I have a multipath router using 2.6.8.1 with patches from here
http://www.ssi.bg/~ja/#routes
basic setup:
___ ISP1
2003 Feb 25
0
Shorewall Setup.
Hello Tom and others on the list.
Tom - you might recall that the other day (night) I had problems with my
axip setup (protocol 93) and we made some changes to the policy, zones and
interfaces files. You added ''peers and tunl+''
Following that change nothing seemed to work. In fact you wanted to see
the shorewall status file, among other things.
Well - tonight, I carefully put
2004 Nov 29
2
SFTP
(anonymous post) I have a simple 2 interface firewall setup and all is
good, almost. I am hosting virtual websites and DNS behind shorewall no
problem. However I am trying to use SFTP via a different port number and
have no luck even though Putty works well. Is there anything weird to
sftp and shorewall? My lab uses a different firewall (firestarter) and
it works OK.
I am using;
DNAT net
2006 Apr 09
3
Conntrack, nat and multipath - what is wrong here?
I have a gentoo 2.6.14 box with 4 nics, LAN/DMZ/PUB1/PUB2
LAN and DMZ have a 1918 /22 each, PUB1 and PUB2 have a /29 each of which 5 ips
are assigned.
Using the mangle table, I give all packets a mark (according to local
policies) in the range 1-10. Using ip rule, i pass marks 1-5 through the pub1
route table, and marks 6-10 through the pub2 routing table. Using the nat
table, I SNAT to one
2003 Aug 26
1
ADSL router, two nics, web server not visible from internet
I have an ADSL router, a linux box with two NICS connected to the
router and another PC connected to the router.
I installed shorewall using the two interface method.
I can ping and see the webserver on the linux box from the local
network, but not from the internet.
Sys info as follows:
[root@wilma root]# shorewall version
1.4.6b
[root@wilma root]# ip addr show
1: lo: <LOOPBACK,UP> mtu
2004 Sep 21
1
squid on DMZ using proxyarp
sorry, i''m confuse where to post my problem..
i was post to shorewall-users, but must read to
support.html
this''s my problem
-----------
i have squid running on DMZ zone
and my network using ProxyARP on eth1 and eth2
mylinuxbox slackware 9.2
my network can access to internet normal, but can''t
redirect to squid server from firewall.
sometimes my network can connect