Displaying 20 results from an estimated 20000 matches similar to: "re: Services file"
2004 Oct 12
4
Blacklisted packages still logged
Hello,
Pardon me if this turns out to be stupid question.
I have an IP address blacklisted in /etc/shorewall/blacklist. I have
BLACKLIS_LOGLEVEL not set in /etc/shorewall/shorewall.conf, but I can still
see the packages coming from the blacklisted IP logged in /var/log/messages
when I do ''tail -f /var/log/messages''.
Is there someplace else I should check ?
Thanks.
RDB
--
2004 Aug 03
4
Multiple zones and aliases (newbe)
Hi all,
I''m totally new to Shorewall and have only read through a limited
amount of documentation. I have an idea for a new configuration of our
server firewall and would like to know a general yes or no (give or take
a few tips) on the concept. I will then go and read up in more detail
when I come to implementing it. I always think that it''s best to get a
general idea from
2008 Dec 05
6
xtables-addons+iptables-1.4.1+
Hi all,
We are trying to upgrade to iptables 1.4.1+
however the ipp2p module now it is included in the xtables-addons modules.
In the xtables-addons modules the commad line for ipp2p is changed
and the
-m ipp2p --ipp2p
option is not supported anymore ....
instead the maintainer requires that we use -m ipp2p --bit ... -m ipp2p
--kaza for each different P2P protocol.
as a result shorewall does
2003 Apr 14
1
FW: Re: Open ports
------- BEGIN FORWARDED MESSAGE -------
From: g.pardon@pi.be
To: teastep@shorewall.net
Cc:
Subject: Re: [Shorewall-users] Open ports
How am I testing this?
I''m doing a portscan using a portscanner like GFI Languard, Superscanner
and nmap to check. Those two TCP-ports always showed up. Although, I
think there are other to test it.
I read the FAQ and the phenomenon (where is that
2005 Mar 29
4
Shorewall and an inline IDS (snort-inline or hogwash)
Is anyone using an inline IDS like hogwash or snort-inline to drop
packets in a system running shoreline? I _think_ I see how to
configure it, but I''d be really interested in finding a howto or
something...
Thanks!
Mike-
--
Mornings: Evolution in action. Only the grumpy will survive.
--
Please note - Due to the intense volume of spam, we have installed site-wide spam
filters at
2003 Jan 21
4
Two diferent LAN''s...
Hi,
I''ve got a question about how to configure the shorewall, and maybe
someone could answer.
I have a PC with 3 ethernet. The eth0 connets to internet. The eth1
connects to LAN A, and the eth2 connects to LAN B. I''ve configured
the shorewall for doing NAT, and both LANs can navigate, but it seems
that from a LAN A host you can connect to a PC of LAN B, and the
other way
2003 Jan 20
3
remote site 10.x http traffic rule help!
Hi everyone -
I was wondering how do I setup a rule with the following scenario:
I have a VPN site-2-site connection setup. Also, on each site I have
squid which redirect all local HTTP traffic on 3128. But I have problems
when I try to access the other site web server which is 10.50.20.198 from
my network setup which is 10.50.30.0/24. I have all other traffic flowing
between the two sites
2005 Sep 25
8
...requires that your kernel and iptables have ROUTE target support
good day to you
i have compiled evertything related to ip tables as modules, but still i get
this error when trying to use /etc/shorewall/routes
can someone tell me the spicific module i need to have?
here are my info
intranet linux # shorewall version
2.4.2
intranet linux # uname -a
Linux intranet 2.6.12-gentoo-r10 #10 SMP Sun Sep 11 15:01:49 SAST 2005 i686
AMD Athlon(tm) XP 2400+
2008 Dec 25
2
Problems with exclusion in host definition - shorewall 4.2.3 latest
Hi,
usually my shorewall inst. uses compiler=perl.
While some tests I changed my config to compiler=shell, and in this case
I get an error like this:
--------------------------------------------------------
Setting up TCP Flags checking...
iptables v1.3.8: host/network `169.254.0.0/16!169.254.1.0'' not found
Try `iptables -h'' or ''iptables --help'' for more
2002 Dec 21
6
Passive FTP server
Hello everyone,
I run a Pure-FTP server on my DMZ. I can specify with Pure-ftp what ports
will be used for clients when they connect with passive mode. I entered
50000 50400, so I have enough for 200 users at the same time.
Then the pure-ftp website tells me to open up those ports on the firewall.
How do I do this? In my rules file is now something like:
ACCEPT net dmz:10.0.0.2 tcp
2007 Jul 10
1
Migrating subscription lists
I thought this would be relatively straightforward....I would create
.subscriptions by doing an ls -1 of ~/mail.
I'm running into some problems.
1) the ~/mail directories haves directories in them for 5% of the
accounts! AFAIK, our mail sevice has always been UWIMAP with mbox
format INBOXes, and it was my understanding that the mbox format is flat
and NOT hierarchical and thus I'd
2009 Apr 03
2
[LLVMdev] build error on libLLVMSystem.a without any useful error message
Thanks for your help Dale,
I got a little bit more clue (in snipped the begining the build messages) :
ar cru /Users/nraynaud/Desktop/geek/llvm-svn/build/Debug/lib/libLLVMSystem.a
/Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Alarm.o
/Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Disassembler.o
2009 Apr 03
2
[LLVMdev] build error on libLLVMSystem.a without any useful error message
Thanks for your reply,
Perl is implied ???
here is the version :
nraynaud at macaron-2:~/Desktop/geek/fp$ perl --version
This is perl, v5.8.8 built for darwin-thread-multi-2level
(with 2 registered patches, see perl -V for more detail)
the two patches are :
Locally applied patches:
fix for regcomp CVE-2007-5116 security vulnerability
fix for double-free CVE-2008-1927 security
2009 Apr 03
0
[LLVMdev] build error on libLLVMSystem.a without any useful error message
Nicolas Raynaud wrote:
> Thanks for your help Dale,
>
> I got a little bit more clue (in snipped the begining the build messages) :
>
> ar cru /Users/nraynaud/Desktop/geek/llvm-svn/build/Debug/lib/libLLVMSystem.a
> /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Alarm.o
> /Users/nraynaud/Desktop/geek/llvm-svn/build/lib/System/Debug/Disassembler.o
>
2009 Apr 03
0
[LLVMdev] build error on libLLVMSystem.a without any useful error message
make VERBOSE=1 might tell you something. Apparently the shared
library link is failing for some reason.
On Apr 2, 2009, at 5:45 PMPDT, Nicolas Raynaud wrote:
> Hi all, llvm doesn't seems to build but it doesn't give me any useful
> error message :
> nraynaud at macaron-2:~/Desktop/geek/llvm-svn/build$ make
> llvm[1]: Compiling Alarm.cpp for Debug build
> llvm[1]:
2005 May 16
17
Problems in sending emails
Hello,
I''m new in the list. I''ve installed Mandrake MNF and it works fine but I''ve a problem in sending emails.
Small text mails can go out but bigger ones, with attachements, have problems.
My network is formed by Windows workstations and only the firewall is a Linux box.
The first simptom is the reaching of ISP''s server time out and then my mail client goes in
2009 Mar 13
4
date differs permanent some 3450 sec.
Hi,
the date jumps within 30 seconds to a wrong value. ntp service is
stopped at the beginning.
Whereas hwclock seems more precise.
[root at kerio ~]# service ntpd stop
Shutting down ntpd: [ OK ]
[root at kerio ~]# ntpdate 0.centos.pool.ntp.org
13 Mar 07:04:48 ntpdate[23003]: step time server 131.234.137.24 offset
-3450.678273 sec
[root at
2003 Jan 08
3
Shorewall blacklist does all
Hello,
I''m a very happy user of shorewall but I have found a problem
or maybe a misconfiguration I made which I can not resolve.
I use a fairly large blacklist based on probes, nimda & codered
attacks, proxy & relay probes etc.
The only problem is that I want to block incoming trafic on
all ports FROM a block but it does also block a httpd, ping
etc TO a ip in a block what I do
2009 Apr 03
3
[LLVMdev] build error on libLLVMSystem.a without any useful error message
Hi all, llvm doesn't seems to build but it doesn't give me any useful
error message :
nraynaud at macaron-2:~/Desktop/geek/llvm-svn/build$ make
llvm[1]: Compiling Alarm.cpp for Debug build
llvm[1]: Compiling Disassembler.cpp for Debug build
llvm[1]: Compiling DynamicLibrary.cpp for Debug build
llvm[1]: Compiling Host.cpp for Debug build
llvm[1]: Compiling IncludeFile.cpp for Debug build
2009 Dec 09
2
Kerio Mail Server - anyone?
Hey guys,
I'm trying to install the latest Kerio and it seems to want an older
version of libstdc++ which I cannot find anywhere in RPM land
(sorry, but I just know gmail is going to mangle this on its way out )
[root at localhost ~]# rpm --install
/home/amckay/kerio-kms-6.7.3-7892.linux.i386.rpm
error: Failed dependencies:
libstdc++.so.5 is needed by kerio-kms-6.7.3-7892.linux.i386