Displaying 20 results from an estimated 70000 matches similar to: "Shorewall and Kernel 2.4.21"
2004 Sep 23
0
Fwd: RE: 2.6 kernel ipsec and shorewall
FYI...
---------- Forwarded Message ----------
Subject: RE: [Shorewall-users] 2.6 kernel ipsec and shorewall
Date: Thursday 23 September 2004 07:44
From: "Jonathan Schneider" <jon@clearconcepts.ca>
To: "''Tom Eastep''" <teastep@shorewall.net>
I must have been up too late working on this, looking at it the next day I
noticed I completely forgot
2004 Nov 02
3
Shorewall 2.2.0 Beta 2
http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
ftp://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
Problems Corrected:
1. The "shorewall check" command results in the (harmless) error
message:
/usr/share/shorewall/firewall: line 2753:
check_dupliate_zones: command not found
2. The
2005 Mar 30
1
RE: Shorewall and an inline IDS(snort-inlineorhogwash)
Plus I would like to let you know that it works like a charm.
Snort can now see those packets.
-----Original Message-----
From: shorewall-users-bounces@lists.shorewall.net
[mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of
Thibodeau, Jamie L.
Sent: Wednesday, March 30, 2005 9:25 AM
To: Mailing List for Shorewall Users
Subject: RE: [Shorewall-users] Shorewall and an inline
2004 Nov 02
0
Shorewall 2.2.0 Beta 2
http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
ftp://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta2
Problems Corrected:
1. The "shorewall check" command results in the (harmless) error
message:
/usr/share/shorewall/firewall: line 2753:
check_dupliate_zones: command not found
2. The
2004 Sep 29
0
Re: Shorewall-users Digest, Vol 22, Issue 65
Hi
I have 2nic firewall . I had to open some ranges of udp and tcp ports . I
faced a problem that although all the ports are open Some functionality was
not working . Any body used shorewall with H323 Voip traffic DNATed . Any
help is appretiated .
Thanks
----- Original Message -----
From: <shorewall-users-request@lists.shorewall.net>
To: <shorewall-users@lists.shorewall.net>
Sent:
2004 Nov 27
2
Shorewall 2.2.0 Beta 6
Ok -- I''m wearing the brown bag tonight (I''ve airmailed one to Tuomas as
well :-) ).
The IPTABLES patch had some problems when IPTABLES was not set
in /etc/shorewall/shorewall.conf. Beta 6 fixes those (I hope) and also
corrects a rather obscure problem with "shorewall add" when the "mss"
option appears in /etc/shorewall/ipsec.
-Tom
--
Tom Eastep \
2005 Mar 30
1
RE: Shorewall and an inline IDS (snort-inlineorhogwash)
You are awesome!!!!
-----Original Message-----
From: shorewall-users-bounces@lists.shorewall.net
[mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of Tom
Eastep
Sent: Wednesday, March 30, 2005 9:11 AM
To: Mailing List for Shorewall Users
Subject: Re: [Shorewall-users] Shorewall and an inline IDS
(snort-inlineorhogwash)
Tom Eastep wrote:
> Thibodeau, Jamie L. wrote:
>
2003 Jan 28
1
[Debian] shorewall 1.3.13-3 (fwd)
------------ Forwarded Message ------------
Date: Tuesday, January 28, 2003 10:19 AM +0100
From: Lorenzo Martignoni
To: Tom Eastep
Subject: shorewall 1.3.13-3
I built a new debian version for shorewall-1.3.13:
shorewall (1.3.13-3) unstable; urgency=high
* fixed a bug in shorewall.conf: SHARED_DIR was pointing to the old
location of shorewall scripts, now moved to
2004 Jan 15
2
Crypto API and Shorewall
A number of you are flailing around trying to get the subject combination to
work.
You should all be aware that there are parts of this that don''t currently work
and that won''t work well until there are enhancements made to Shorewall (and
probably to Netfilter).
I. There is no clean way currently to support Road Warriors from a
Masquerading Netfilter firewall/gateway. As
2003 Feb 24
0
RE: Shorewall-users Digest, Vol 3, Issue 64
Did I just read completely past this or is this an undocumented feature?
Either way, thanks.
BTW for my first attempt at a Linux firewall, this proved to be a challenge,
but worth it. And most of the problems I''ve had are I/O (idiot operator)
errors. Keep up the good work.
Kev
---
Message: 10
Date: Mon, 24 Feb 2003 06:20:00 -0800
From: Tom Eastep <teastep@shorewall.net>
Subject:
2003 Feb 22
2
Webmin Shorewall Patch
My description of the incorrect use of the term ''SNAT'' on the Static NAT
Webmin page was apparently misunderstood. Attached is a patch against the
Webmin-1.070 Shorewall module that corrects this problem and also adds the
''DNAT-'' action for rules.
To apply the patch, you will need the ''patch'' utility:
cd <webmin shorewall directory - on
2003 May 30
3
Shorewall Support
I regret to announce that effective immediately, I will no longer be
answering Shorewall questions during local business hours. I normally work
from 7:00AM - 4:00PM, Pacific Time (GMT -0800).
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ teastep@shorewall.net
2004 Dec 30
4
Shorewall 2.2.0 RC3
http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-RC3
ftp://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-RC3
Just a few bug fixes:
* The following error message could appear during "shorewall stop"
clear":
local: lo:: bad variable name
*
* The rate limiting example in /etc/shorewall/rules has been
changed to use the RATE
2005 Jan 03
1
RE: Outlook Web Access behind shorewall firewalldoesn''t work
Thanks for such a quick reply Tom!
Any suggestions then as to what I might do other than putting a second
nic in the SBS and opening it up for web access? I don''t like the idea,
but since MS SBS includes fireall that is actually what MS suggests.
Boyd
-----Original Message-----
From: Tom Eastep [mailto:teastep@shorewall.net]
Sent: January 3, 2005 3:05 PM
To: Shorewall Users
Cc: Boyd
2003 Aug 25
0
cant open port (fwd)
And Andrew -- PLEASE don''t reply off-list. I''m not a private help desk...
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
---------- Forwarded message ----------
Date: Mon, 25 Aug 2003 19:01:34 -0700 (Pacific Daylight Time)
From: Tom Eastep <teastep@shorewall.net>
To: andrew
2005 Sep 20
0
Fwd: [PATCH] Another iptables-save buglet
FYI
This bug will prevent ''shorewall restore'' from working if you have "!<single
IP address>" in the ORIGINAL DEST column.
-Tom
---------- Forwarded Message ----------
Subject: [PATCH] Another iptables-save buglet
Date: Wednesday 14 September 2005 15:09
From: Tom Eastep <teastep@shorewall.net>
To: netfilter-devel@lists.netfilter.org
The conntrack
2005 Jan 12
1
Shorewall 2.0.15
My sincere apologies for the messed up 2.0.14. I didn''t realize that I
had merged a change from 2.2.0 but hadn''t tested it.
http://shorewall.net/pub/shorewall/2.0/shorewall-2.0.15
ftp://shorewall.net/pub/shorewall/2.0/shorewall-2.0.15
1. The range of ports opened by the AllowTrcrt action has been expanded
to 33434:33524 to allow for a maximum of 30 hops.
2. Code mis-ported
2003 Feb 21
2
Shorewall 1.4 will require the iproute package
Subject says it all...
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ teastep@shorewall.net
2003 Jan 10
5
Shorewall site search is now available agai n
Hmm--either the indexing process is still running, or it''s broken again.
It''s 0443 GMT, and I can''t get the search engine to find anything on the
mailing list or the web site (I used ''dns'' as my search term).
It''s not that big of an inconvenience, though--Googling for
''site:shorewall.net dns'' does pretty much the same thing.
2005 Mar 12
0
Shorewall 2.2.2
Shorewall 2.2.2 is now available.
http://shorewall.net/pub/shorewall/2.2/shorewall-2.2.2
ftp://shorewall.net/pub/shorewall/2.2/shorewall-2.2.2
Problems Corrected:
1. The SOURCE column in the /etc/shorewall/tcrules file now correctly
allows IP ranges (assuming that your iptables and kernel support
ranges).
2. If A is a user-defined action and you have file /etc/shorewall/A