similar to: re: Services file

Hello, Pardon me if this turns out to be stupid question. I have an IP address blacklisted in /etc/shorewall/blacklist. I have BLACKLIS_LOGLEVEL not set in /etc/shorewall/shorewall.conf, but I can still see the packages coming from the blacklisted IP logged in /var/log/messages when I do ''tail -f /var/log/messages''. Is there someplace else I should check ? Thanks. RDB --

Hi all, I''m totally new to Shorewall and have only read through a limited amount of documentation. I have an idea for a new configuration of our server firewall and would like to know a general yes or no (give or take a few tips) on the concept. I will then go and read up in more detail when I come to implementing it. I always think that it''s best to get a general idea from

Hi all, We are trying to upgrade to iptables 1.4.1+ however the ipp2p module now it is included in the xtables-addons modules. In the xtables-addons modules the commad line for ipp2p is changed and the -m ipp2p --ipp2p option is not supported anymore .... instead the maintainer requires that we use -m ipp2p --bit ... -m ipp2p --kaza for each different P2P protocol. as a result shorewall does

------- BEGIN FORWARDED MESSAGE ------- From: g.pardon@pi.be To: teastep@shorewall.net Cc: Subject: Re: [Shorewall-users] Open ports How am I testing this? I''m doing a portscan using a portscanner like GFI Languard, Superscanner and nmap to check. Those two TCP-ports always showed up. Although, I think there are other to test it. I read the FAQ and the phenomenon (where is that

Is anyone using an inline IDS like hogwash or snort-inline to drop packets in a system running shoreline? I _think_ I see how to configure it, but I''d be really interested in finding a howto or something... Thanks! Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at

Hi, I''ve got a question about how to configure the shorewall, and maybe someone could answer. I have a PC with 3 ethernet. The eth0 connets to internet. The eth1 connects to LAN A, and the eth2 connects to LAN B. I''ve configured the shorewall for doing NAT, and both LANs can navigate, but it seems that from a LAN A host you can connect to a PC of LAN B, and the other way

Hi everyone - I was wondering how do I setup a rule with the following scenario: I have a VPN site-2-site connection setup. Also, on each site I have squid which redirect all local HTTP traffic on 3128. But I have problems when I try to access the other site web server which is 10.50.20.198 from my network setup which is 10.50.30.0/24. I have all other traffic flowing between the two sites

good day to you i have compiled evertything related to ip tables as modules, but still i get this error when trying to use /etc/shorewall/routes can someone tell me the spicific module i need to have? here are my info intranet linux # shorewall version 2.4.2 intranet linux # uname -a Linux intranet 2.6.12-gentoo-r10 #10 SMP Sun Sep 11 15:01:49 SAST 2005 i686 AMD Athlon(tm) XP 2400+

Hi, usually my shorewall inst. uses compiler=perl. While some tests I changed my config to compiler=shell, and in this case I get an error like this: -------------------------------------------------------- Setting up TCP Flags checking... iptables v1.3.8: host/network `169.254.0.0/16!169.254.1.0'' not found Try `iptables -h'' or ''iptables --help'' for more

Hello everyone, I run a Pure-FTP server on my DMZ. I can specify with Pure-ftp what ports will be used for clients when they connect with passive mode. I entered 50000 50400, so I have enough for 200 users at the same time. Then the pure-ftp website tells me to open up those ports on the firewall. How do I do this? In my rules file is now something like: ACCEPT net dmz:10.0.0.2 tcp

I thought this would be relatively straightforward....I would create .subscriptions by doing an ls -1 of ~/mail. I'm running into some problems. 1) the ~/mail directories haves directories in them for 5% of the accounts! AFAIK, our mail sevice has always been UWIMAP with mbox format INBOXes, and it was my understanding that the mbox format is flat and NOT hierarchical and thus I'd

Thanks for your help Dale, I got a little bit more clue (in snipped the begining the build messages) : ar cru /Users/nraynaud/Desktop/geek/llvm-svn/build/Debug/lib/libLLVMSystem.a /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Alarm.o /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Disassembler.o

Thanks for your reply, Perl is implied ??? here is the version : nraynaud at macaron-2:~/Desktop/geek/fp$ perl --version This is perl, v5.8.8 built for darwin-thread-multi-2level (with 2 registered patches, see perl -V for more detail) the two patches are : Locally applied patches: fix for regcomp CVE-2007-5116 security vulnerability fix for double-free CVE-2008-1927 security

Nicolas Raynaud wrote: > Thanks for your help Dale, > > I got a little bit more clue (in snipped the begining the build messages) : > > ar cru /Users/nraynaud/Desktop/geek/llvm-svn/build/Debug/lib/libLLVMSystem.a > /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Alarm.o > /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Disassembler.o >

make VERBOSE=1 might tell you something. Apparently the shared library link is failing for some reason. On Apr 2, 2009, at 5:45 PMPDT, Nicolas Raynaud wrote: > Hi all, llvm doesn't seems to build but it doesn't give me any useful > error message : > nraynaud at macaron-2:~/Desktop/geek/llvm-svn/build$ make > llvm[1]: Compiling Alarm.cpp for Debug build > llvm[1]:

Hello, I''m new in the list. I''ve installed Mandrake MNF and it works fine but I''ve a problem in sending emails. Small text mails can go out but bigger ones, with attachements, have problems. My network is formed by Windows workstations and only the firewall is a Linux box. The first simptom is the reaching of ISP''s server time out and then my mail client goes in

Hi, the date jumps within 30 seconds to a wrong value. ntp service is stopped at the beginning. Whereas hwclock seems more precise. [root at kerio ~]# service ntpd stop Shutting down ntpd: [ OK ] [root at kerio ~]# ntpdate 0.centos.pool.ntp.org 13 Mar 07:04:48 ntpdate[23003]: step time server 131.234.137.24 offset -3450.678273 sec [root at

Hello, I''m a very happy user of shorewall but I have found a problem or maybe a misconfiguration I made which I can not resolve. I use a fairly large blacklist based on probes, nimda & codered attacks, proxy & relay probes etc. The only problem is that I want to block incoming trafic on all ports FROM a block but it does also block a httpd, ping etc TO a ip in a block what I do

Hi all, llvm doesn't seems to build but it doesn't give me any useful error message : nraynaud at macaron-2:~/Desktop/geek/llvm-svn/build$ make llvm[1]: Compiling Alarm.cpp for Debug build llvm[1]: Compiling Disassembler.cpp for Debug build llvm[1]: Compiling DynamicLibrary.cpp for Debug build llvm[1]: Compiling Host.cpp for Debug build llvm[1]: Compiling IncludeFile.cpp for Debug build

Hey guys, I'm trying to install the latest Kerio and it seems to want an older version of libstdc++ which I cannot find anywhere in RPM land (sorry, but I just know gmail is going to mangle this on its way out ) [root at localhost ~]# rpm --install /home/amckay/kerio-kms-6.7.3-7892.linux.i386.rpm error: Failed dependencies: libstdc++.so.5 is needed by kerio-kms-6.7.3-7892.linux.i386