Displaying 20 results from an estimated 300 matches similar to: "Shorewall 2.2.0 Beta 1"
2006 Aug 29
3
masq problem
Hi everybody.
I''m sorry to bother you because I''m probably doing something wrong, but
I have already read the documentation and I have been using shorewall
for quite a long time.
I recently installed 3.2.3 from source (but there was the same problem
with 3.0.7 from apt-get ... -t unstable)
The thing is, that I can''t get masq working. Maybe this is because
2007 Nov 10
2
Access Point with Ethernet.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi:
I have a small infrastructure of network of local area, that are based on a
computer, with computer and with a Point Access, with Debian Etch 4.0r1.
With Shorewall 3.2.6-2.
Well. Since I have two cards of network, which of which, I have left like that:
Internet --> Router (217.126.221.65) --> eth1 (217.126.221.117) --> eth0
(LAN
2009 Jun 27
1
Transparent Proxy Problem with Squid3 and Shorewall
Hi all,
I have a strange problem in trying to install a transparent proxy (in my
internal net not on the shorewall server) according to the instructions
as outlined in http://www.shorewall.net/Shorewall_Squid_Usage.html#Local
My Network looks the following:
Internal Net: 10.0.0.0/24 Squid Server listening on port 3128
(ip 10.0.0.152, DNS name server01)
| |
2011 Aug 29
2
[Bug 742] New: ip6tables "-m iprange" ipv6 range detection
http://bugzilla.netfilter.org/show_bug.cgi?id=742
Summary: ip6tables "-m iprange" ipv6 range detection
Product: netfilter/iptables
Version: linux-2.6.x
Platform: x86_64
OS/Version: SuSE Linux
Status: NEW
Severity: critical
Priority: P5
Component: ip6_tables (kernel)
AssignedTo:
2011 Mar 18
6
[Bug 711] New: iptables -m iprange causes unknown error
http://bugzilla.netfilter.org/show_bug.cgi?id=711
Summary: iptables -m iprange causes unknown error
Product: netfilter/iptables
Version: linux-2.6.x
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P5
Component: ip_tables (kernel)
AssignedTo: netfilter-buglog at
2003 Jul 07
1
Shorewall 1.4.6 Beta 2
Changes since Beta 1:
Problems Corrected:
1. Corrected a problem in Beta 1 where DNS names containing a "-" were
mis-handled when they appeared in the DEST column of a rule.
New Features:
1. The limit of 256 addresses for an address range has been removed.
Shorewall now decomposes the range into an optimal set of
network/host addresses (see also the
2010 Mar 09
2
[Bug 639] New: iptables iprange
http://bugzilla.netfilter.org/show_bug.cgi?id=639
Summary: iptables iprange
Product: iptables
Version: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: blocker
Priority: P1
Component: iptables
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: paulo.santos at
2005 Jan 11
0
shorewall iprange tweak
I often find myself doing,
whois some.damned.ip.address
and then copying and pasting the address range for
the miscreant in question, and doing,
shorewall iprange x.x.x.x-y.y.y.y
with the aim to drop the entire range.
My one minor complaint is that I often have to edit out
the spaces between the hyphen when copying and pasting
the address range returned by whois. I tweaked the shorewall
2004 Oct 18
11
how can i log everything?
hi,
it''d be very useful to add some kind of "log everything" option to
shorewall. currently the logging is useful if you know what you would
like to log. but if you don''t know than it''s a problem...
another problem that currently it''s not possible to log the nat table.
at least i can''t find any way (can''t add logging into masq and
2013 Sep 10
6
lsm configuration issues...
Hi,
I use shorewall-4.5.4 + lsm-0.143 and it does not seem to work as expected...
When all providers are up, everything seems fine.
When one goes down, lsm says "link <provider> down event"... and it seems
ok but we then experience some problems such as a few unreachable sites,
DNS problems...
If I remove the downed provider from all confs and restart, everything works again.
2004 Dec 21
2
Defining "trusted" hosts/nets on a single interface system
Ok, I give up. I tried, really hard, before asking but I must be the
most stupid shorewall user on the planet :(
My laptop runs a single eth0 interface and knows Net and Firewall as
zones and the default "inbound" policies are Net->Any DROP and >ny->Any
REJECT.
Now at home I have my trusted 192.168.174.240/29 subnet which hosts my
very trusted 192.168.174.242 host and I
2006 Oct 23
3
command not found error
I am running version 3.0.7 of Shorewall on a Debian Sarge system, but when I
start Shorewall I get this:
/usr/share/shorewall/firewall: line 204: 4: command not found
I looked there and found this:
# Run ip and if an error occurs, stop the firewall and quit
#
run_ip() {
if ! ip $@ ; then
if [ -z "$STOPPING" ]; then
error_message "ERROR: Command \"ip
2003 Jul 21
0
Shorewall 1.4.6
Shorewall 1.4.6 is now available. Thanks to Francesca Smith, the 1.4.6
Sample configurations are also available.
The release is currently available at:
http://shorewall.net/pub/shorewall
ftp://shorewall.net/pub/shorewall
It will be available at the other mirrors shortly.
This is a minor release of Shorewall.
Problems Corrected:
1) A problem seen on RH7.3 systems where Shorewall encountered
2005 Oct 11
0
iptables iprange match
Hello list!:
Well, I was able to install xen 2.0.7 using a 2.4.30 kernel in a domU.
The domU have installed gcc3.4 .. after
yum -y install compat-gcc*
and put CC=gcc33 in all make commands and other changes as here:
http://lists.xensource.com/archives/html/xen-users/2005-08/msg00258.html
I''m trying to use the iprange match, but every time when I want apply a
rule I receives:
2010 Feb 15
1
[Bug 635] New: module owner user is no identified in nfs
http://bugzilla.netfilter.org/show_bug.cgi?id=635
Summary: module owner user is no identified in nfs
Product: netfilter/iptables
Version: unspecified
Platform: i386
OS/Version: All
Status: NEW
Severity: blocker
Priority: P3
Component: unknown
AssignedTo: netfilter-buglog at lists.netfilter.org
2014 May 07
1
[Bug 922] New: iprange: --ports is not suppported
https://bugzilla.netfilter.org/show_bug.cgi?id=922
Summary: iprange: --ports is not suppported
Product: nftables
Version: unspecified
Platform: x86_64
OS/Version: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
Component: nft
AssignedTo: pablo at netfilter.org
ReportedBy: anarey
2007 Nov 20
11
rfc1918 on external interface
Please, help me. Can i forbid and how any outgoing traffic
(ping,trace) to rfc1918 networks on my external interfaces?
Thank you very much.
Aleksandr
--------------------
Продукция AcmePower - это зарядные устройства, аккумуляторы формата АА
и ААА, сетевые адаптеры, аккумуляторные батареи для фото и видеокамер,
ноутбуков и PDA. Гарантия минского сервисного центра.
2005 May 31
11
More Tests for 2.4.0-RC2 - strange behaviour
Hi all,
I was trying to test ROUTE specific code with a multi-isp serviced box.
There is a bug somewhere, but I''m not able to understand what the real
problem is:
when I issue a "shorewall show capabilities" I get:
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Shorewall has
2004 Aug 12
5
shorewall iprange problem
Perhaps someone can help me understand why this is happening. I''m
trying to write a script using ''shorewall iprange'' to parse some ip
ranges into subnets so that i can place them into the blocklist. I keep
getting an error when i run the script though.
Here is the script:
#!/bin/csh
foreach i (`cat ipranges`)
shorewall iprange $i >>
2007 Aug 13
4
Problem with iprange in shorewall 4.0.2
Hi,
I have the following problem while activating this rule entry using shorewall-shell:
ACCEPT:notice:rul WAN:139.x.x.226 INT:139.x.x.153-139.x.x.156 udp 1024:65535 1024:65535
"-m iprange" in front of "--dst-range" is missing in the activation command.
The logging entry (above) is set correct.
Below is the debug output.
Thanks
Regards
Günter
+ case $level in
+