Displaying 20 results from an estimated 1000 matches similar to: "firewall questions"
2020 Jun 22
0
firewall questions
On Sun, Jun 21, 2020 at 02:33:18PM -0500, Chuck Campbell wrote:
> I'm running Centos 7.8.2003, with firewalld.
>
> I was getting huge numbers of ssh attempts per day from a few specific ip
> blocks.
>
> The offenders are 45.0.0.0/24, 49.0.0.0/24, 51.0.0.0/24, 111.0.0.0/24 and
> 118.0.0.0/24, and they amounted to a multiple thousands of attempts per day.
> I installed
2017 Dec 19
2
firewalld
I have two VMs, both with firewalld installed. One on machine It this in the IN_public chain:
Chain IN_public (2 references)
pkts bytes target prot opt in out source destination
81 3423 IN_public_log all -- * * 0.0.0.0/0 0.0.0.0/0
81 3423 IN_public_deny all -- * * 0.0.0.0/0 0.0.0.0/0
2017 May 28
1
Ovirt Hosted-Engine VM iptables
Hi
I would like to add rules into the iptables of the Hosted Engine VM in
Ovirt.
the version is oVirt Engine Version: 4.1.1.8-1.el7.centos
I have tried using the normal process for iptables (iptables-save etc),
but it seems that the file
/etc/sysconfig/iptables
this is ignored in the Ovirt Engine VM.
How can I add permanent rules into the Engine VM?
Kind regards
Andrew
2019 Jan 15
2
Cannot access other computers on LAN
Hello Julien,
Am Tue, 15 Jan 2019 09:30:23 +0100
schrieb Julien dupont <marcelvierzon at gmail.com>:
> In that case I see:
> IP 172.16.0.3 > 192.168.1.1: ICMP echo request, id2135, seq1, length 64
> IP 172.16.0.3 > 192.168.1.1: ICMP echo request, id2135, seq2, length 64
> IP 172.16.0.3 > 192.168.1.1: ICMP echo request, id2135, seq3, length 64
>
> Packet goes
2020 Jan 09
7
Blocking attacks from a range of IP addresses
I am being attacked by an entire subnet where the first two parts of the IP address remain identical but the last two parts vary sufficiently that it is not caught by fail2ban since the attempts do not meet the cut-off of a certain number of attempts within the given time.
Has anyone created a fail2ban filter for this type of attack? As of right now, I have manually banned a range of IP addresses
2016 Sep 13
2
Iptables not save rules
> -----Original Message-----
> From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On
> Behalf Of John R Pierce
> Sent: Sunday, September 11, 2016 10:44 PM
> To: centos at centos.org
> Subject: Re: [CentOS] Iptables not save rules
>
> On 9/11/2016 8:55 AM, TE Dukes wrote:
> > I have been using ipset to blacklist badbots. Works like a champ!
>
2015 Oct 11
4
Firewalld
I just noticed that when rebooting a CentOS 7 server the firewall comes back up with both interfaces set to REJECT, instead of the eth1 interface set to ACCEPT as defined in 'permanent' firewalld configuration files.
All servers are up to date.
By "just noticed" I mean that I finally investigated why a newly rebooted VM failed to allow NFS connections. Prior to doing that.
2019 Aug 05
2
[OT] odd network question
On 05/08/2019 09:18, Pete Biggs wrote:
>> I've found the default 10min bans hardly bother some attackers.
>> So I've added the "recidive" feature of fail2ban. After the
>> second 10min ban, the attacker is blocked for 1 week.
>>
> Oh definitely. My systems are set to "3 bans and you're out" - a
> recidive ban is permanent after three
2015 Aug 19
1
Firewalld broken on Centos7?
Hi,
I have a standard Centos7 AMI. Can anyone tell me whats happening here?
Thanks,
Andrew
Aug 19 11:17:23 master dhclient[22897]: bound to 10.141.10.49 -- renewal in
1795 seconds.
Aug 19 11:17:24 master network: Determining IP information for eth0... done.
Aug 19 11:17:24 master network: [ OK ]
Aug 19 11:17:24 master systemd: Started LSB: Bring up/down networking.
Aug 19 11:23:43 master
2017 Dec 19
0
firewalld
On Tue, 2017-12-19 at 15:05 -0800, Emmett Culley wrote:
> I have two VMs, both with firewalld installed. One on machine It
> this in the IN_public chain:
>
> Chain IN_public (2 references)
> pkts bytes target prot opt
> in out source destination
> 81 3423 IN_public_log all
> -- * * 0.0.0.0/0 0.0.0.0/0
2017 Dec 19
1
firewalld
On 12/19/2017 03:37 PM, Louis Lagendijk wrote:
> On Tue, 2017-12-19 at 15:05 -0800, Emmett Culley wrote:
>> I have two VMs, both with firewalld installed. One on machine It
>> this in the IN_public chain:
>>
>> Chain IN_public (2 references)
>> pkts bytes target prot opt
>> in out source destination
>> 81 3423
2015 Feb 17
3
Using "ipset" under CentOS7
ipset on CentOS6 comes with /etc/rc.d/init.d/ipset so that "service
ipset reload" can be used to (re)load the configuration. CentOS7
doesn't come with an equivalent for systemd:
# systemctl reload ipset.service
Failed to issue method call: Unit ipset.service failed to load: No
such file or directory.
# systemctl start ipset.service
Failed to issue method call: Unit ipset.service
2014 Aug 10
3
ipset module loaded at startup on CentOS 6.5
Anybody on here successfully get ipset iptables sets to work _after_ a
reboot?
My question on StackExchange
http://unix.stackexchange.com/questions/149536/upon-bootup-all-iptables-are-lost-because-the-kernel-module-ip-set-is-not-loade
Some of the things that need to be in place, otherwise iptables does not
load:
1.) The kernel module ip_set needs to be loaded.
2.) The "sets" need to be
2019 Jan 15
0
Cannot access other computers on LAN
ip_forward was not enabled, now it is. Still same result:
On VPN_office I use 'tcpdump -npi any icmp and host 192.168.1.1' and ping
192.168.1.1 from the client:
5:28:42.646203 IP 172.16.0.3 > 192.168.1.1: ICMP echo request, id 1584, seq
1, length 64
15:28:43.663014 IP 172.16.0.3 > 192.168.1.1: ICMP echo request, id 1584,
seq 2, length 64
15:28:44.688133 IP 172.16.0.3 >
2010 Jun 17
4
shorewall 4.4.10 failing to start; won't recognize ipset "capability"
I have been using shorewall for years with ipsets. I have encountered a
problem after upgrading from 4.2.11 to 4.4.10. When I run
''shorewall-check'' or ''shorewall start'', it halts with the error:
----------------------------------------------------------------------
ERROR: ipset names in Shorewall configuration files require Ipset Match
in your kernel and
2011 Aug 02
3
[Bug 733] New: ipset restore won't restore from output of ipset save
http://bugzilla.netfilter.org/show_bug.cgi?id=733
Summary: ipset restore won't restore from output of ipset save
Product: ipset
Version: unspecified
Platform: All
OS/Version: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
Component: default
AssignedTo: netfilter-buglog at
2017 Jul 19
3
under some kind of attack
Hi Robert,
On 07/18/2017 11:43 PM, Robert Schetterer wrote:
> i guess not, but typical bots arent using ssl, check it
>
> however fail2ban sometimes is to slow
I have configured dovecot with
auth_failure_delay = 10 secs
I hope that before the 10 sec are over, dovecot will have logged about
the failed login attempt, and fail2ban will have blocked the ip by then.
MJ
2018 Dec 14
4
Firewalld and iptables
On Fri, Dec 14, 2018 at 03:14:12PM -0700, Warren Young wrote:
> On Dec 14, 2018, at 2:30 PM, Jon LaBadie <jcu at labadie.us> wrote:
> >
> > After a recent large update, firewalld's status contains
> > many lines of the form:
> >
> > WARNING: COMMAND_FAILED: '/usr/sbin/iptables?
>
> What?s the rest of the command?
Well, there are about 20 of
2013 Dec 17
1
shorewall add fails with IPSET=
Hi all
I have a CentOS6 box with shorewall-4.5.21.
If I have IPSET= in shorewall.conf and I issue the command "shorewall add
ppp:192.168.33.3 ptp", I get the error:
/usr/share/shorewall/lib.cli: line 585: [: too many arguments
ERROR: Zone ptp, interface ppp does not have a dynamic host list
The error is corrected setting the actual path to ipset in shorewall.conf,
or via the patch:
2016 Sep 11
2
Iptables not save rules
Hello,
I have been using ipset to blacklist badbots. Works like a champ!
The only problem is if I do a system reboot, I lose the ipset and the rule.
I changed /etc/sysconfig/iptables.conf to:
IPTABLES_SAVE_ON_RESTART="yes"
IPTABLES_SAVE_ON_STOP="yes"
And followed the instructions in:
https://www.centos.org/forums/viewtopic.php?t=3853
The changes are still not saved.