Displaying 20 results from an estimated 30000 matches similar to: "Shorewall 2.3 Thread is opened"
2004 Jan 12
0
Shorewall2 -- now running on gateway.shorewall.net
I''ve gotten the basic code working on my firewall.
So that I can quickly get back online if I screw up, I''m currently calling it
shorewall2. That way if it screws up I can just "shorewall restart".
/sbin/shorewall2 -- command interpreter
/etc/shorewall2/ -- configuration files
/usr/share/shorewall2/ -- shared files
Both Shorewall and Shorewall2 use the
2004 Nov 02
3
Shorewall 2.2.0 Beta 2
http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
ftp://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
Problems Corrected:
1. The "shorewall check" command results in the (harmless) error
message:
/usr/share/shorewall/firewall: line 2753:
check_dupliate_zones: command not found
2. The
2004 Nov 26
0
More about Shorewall 2.2.0 Beta 5
If you encounter strange problems with the Beta then either set IPTABLES
(in shorewall.conf) to point to the iptables binary that you normally
use or download and install the ''/sbin/shorewall'' program from CVS
(Shorewall2/ project).
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \
2004 Sep 23
0
Fwd: RE: 2.6 kernel ipsec and shorewall
FYI...
---------- Forwarded Message ----------
Subject: RE: [Shorewall-users] 2.6 kernel ipsec and shorewall
Date: Thursday 23 September 2004 07:44
From: "Jonathan Schneider" <jon@clearconcepts.ca>
To: "''Tom Eastep''" <teastep@shorewall.net>
I must have been up too late working on this, looking at it the next day I
noticed I completely forgot
2005 Mar 15
2
New feature for Shorewall 2.2.3
The following is taken from the Release notes for 2.2.3 (which will be
released in a month or so).
2) There has been ongoing confusion about how the
/etc/shorewall/routestopped file works. People understand how it
works with the ''shorewall stop'' command but when they read that
''shorewall restart'' is logically equivalent to ''shorewall
2004 Jul 30
0
Shorewall 2.1.2 problem with some shells
If you encounter strange problems with 2.1.2 and are using a shell other
than bash, you might try installing the ''functions'' file from CVS
Shorewall2/. It corrects a problem that I ran into with ''ash''.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2004 Nov 02
0
Shorewall 2.2.0 Beta 2
http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
ftp://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
Problems Corrected:
1. The "shorewall check" command results in the (harmless) error
message:
/usr/share/shorewall/firewall: line 2753:
check_dupliate_zones: command not found
2. The
2004 Sep 29
0
Re: Shorewall-users Digest, Vol 22, Issue 65
Hi
I have 2nic firewall . I had to open some ranges of udp and tcp ports . I
faced a problem that although all the ports are open Some functionality was
not working . Any body used shorewall with H323 Voip traffic DNATed . Any
help is appretiated .
Thanks
----- Original Message -----
From: <shorewall-users-request@lists.shorewall.net>
To: <shorewall-users@lists.shorewall.net>
Sent:
2004 Apr 20
2
Rule-specific Log Prefixes
The current CVS Project Shorewall2/ contains my implementation of this
feature. Thanks go to Xavier for ideas about the design.
Xavier -- please give my code a try and see if it works ok for you.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2004 Apr 29
2
iptables-save/iptables-restore
The version of Shorewall currently in CVS (Shorewall2/ project) has been
integrated with iptables-save/iptables-restore. This provides the means
to start and restart shorewall very quickly (mine restarts in under a
second) in the case where you are not changing your configuration.
The release notes are attached.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
2005 May 17
1
Support for inbound traffic from multiple ISPs in CVS
The Shorewall2/ project in CVS contains my initial attempt to establish
correct routing for traffic forwarded from two different ISPs to
internal servers.
>From the release notes:
Shorewall 2.3.2 includes support for multiple Internet interfaces to
different ISPs. This feature is enabled by setting the "default"
option for each Internet interface in
2005 May 15
0
New Toy in CVS
If you are willing to patch your iptables and kernel to support the ROUTE
target, the code in CVS project Shorewall2/ now supports very flexible
routing. As an example, I run Squid in my DMZ for transparent proxy. Rather
than the complex routing setup described in
http://shorewall.net/Shorewall_Squid_Usage.html, I now use this single entry
in /etc/shorewall/routes to route all HTTP requests from
2004 Aug 18
0
iptables-save is broken with policy match
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
iptables=save is producing bad output for rules involving policy match.
I''ve checked in a version of /sbin/shorewall to the Shorewall2/ CVS
project that compensates for this bug.
- -Tom
- --
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP
2005 Sep 20
0
Fwd: [PATCH] Another iptables-save buglet
FYI
This bug will prevent ''shorewall restore'' from working if you have "!<single
IP address>" in the ORIGINAL DEST column.
-Tom
---------- Forwarded Message ----------
Subject: [PATCH] Another iptables-save buglet
Date: Wednesday 14 September 2005 15:09
From: Tom Eastep <teastep@shorewall.net>
To: netfilter-devel@lists.netfilter.org
The conntrack
2005 May 26
3
Updated Shorewall build and publish scripts
Attached please find updated build and publish scripts. They set the
''ulink.target'' parameter appropriately when converting docbook->HTML. I
have always hacked my xhtml/params.xsl file to set this parameter; these
updated scripts make that abomination unnecessary.
Paul/Mike: It might be a good idea to add a CVS project for these scripts.
-Tom
--
Tom Eastep \ Nothing is
2004 Jan 31
5
Shorewall 2.0.0 Alpha 1
http://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
ftp://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2005 Jan 03
1
RE: Outlook Web Access behind shorewall firewalldoesn''t work
Thanks for such a quick reply Tom!
Any suggestions then as to what I might do other than putting a second
nic in the SBS and opening it up for web access? I don''t like the idea,
but since MS SBS includes fireall that is actually what MS suggests.
Boyd
-----Original Message-----
From: Tom Eastep [mailto:teastep@shorewall.net]
Sent: January 3, 2005 3:05 PM
To: Shorewall Users
Cc: Boyd
2005 Mar 30
1
RE: Shorewall and an inline IDS(snort-inlineorhogwash)
Plus I would like to let you know that it works like a charm.
Snort can now see those packets.
-----Original Message-----
From: shorewall-users-bounces@lists.shorewall.net
[mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of
Thibodeau, Jamie L.
Sent: Wednesday, March 30, 2005 9:25 AM
To: Mailing List for Shorewall Users
Subject: RE: [Shorewall-users] Shorewall and an inline
2005 Feb 24
2
Re: 2.2 shorewall installation fails on suse 9.2
Laurent Moix wrote:
> Hi,
>
> I try to install shorewall 2.2 on suse 9.2.
>
> # rpm -ivh --nodeps /root/shorewall-2.2.1-1.noarch.rpm
> Preparing... ########################################### [100%]
> 1:shorewall ########################################### [100%]
> shorewall: unknown service
> shorewall: not a runlevel service
>
>
2004 Nov 06
3
shorewall.net Down Time
Tomorrow morning, the following systems will be unavailable while I
upgrade the OS on my firewall:
a) shorewall.net
b) lists.shorewall.net
c) cvs.shorewall.net
d) rsync.shorewall.net
The upgrade will begin around 0700 PST (-0800) and will like take two
hours or so.
Sorry for the inconvenience.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \