Displaying 20 results from an estimated 4000 matches similar to: "Shorewall-1.3.13"
2002 Dec 05
7
New in CVS
The ''firewall'' script currently in the /Shorewall CVS project:
a) Is approximately 15% faster starting/restarting on my configuration --
please report your experiences with it.
b) Reloads Traffic Control/Shaping as part of "shorewall refresh"
c) Turns off the shell trace after an error has occured (except when the
command being traced is "stop" or
2003 Jan 28
1
[Debian] shorewall 1.3.13-3 (fwd)
------------ Forwarded Message ------------
Date: Tuesday, January 28, 2003 10:19 AM +0100
From: Lorenzo Martignoni
To: Tom Eastep
Subject: shorewall 1.3.13-3
I built a new debian version for shorewall-1.3.13:
shorewall (1.3.13-3) unstable; urgency=high
* fixed a bug in shorewall.conf: SHARED_DIR was pointing to the old
location of shorewall scripts, now moved to
2016 Mar 18
1
Where are People Storing CTDB's Accounting Files?
Hi All,
We're using CTDB to cluster protocols over a large SAN and have had some pain related to a bit of a design flaw: we store CTDB and protocol-specific accounting files (recovery locks, state files, etc) on the same filesystem that we're offering through CTDB itself. This makes our front-end services pretty intolerant of flapping in the back-end filesystem, which is obviously not
2003 Jan 21
7
DHCP Question
How do I configure my DHCP client to restart Shorewall when it obtains a
new IP address?
Blake
2004 Aug 16
1
CLEAR_TC=Yes & TC_ENABLED=No
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I found a problem with my tcstart script.
First I was running system TC enabled for testing and then to stop all
TC I changed TC_ENABLED=No.
But I started to wonder why shorewall restart did _not_ clear TC rules
after TC was disabled?
So I checked firewall and found out that if TC_ENABLED=No TC_CLEAR is
disabled automatically.
Question is: should
2005 Apr 19
14
allow ssh access from net to fw?
Hi,
I''m trying to enable ssh (when that works, want to add:pop3s,smtp,web) from
the internet to the firewall but it does not work.
I managed to DNAT ftp to a host in the loc network (192.168.0.50) successful
but I don''t know why SSH:
Does not work for me:
ACCEPT net fw tcp 22
Works from the loc network:
ACCEPT loc fw tcp 22
I have tried also with (no success):
AllowSSH
2003 Aug 13
0
Snapshot 1.4.6 20030813
http://shorewall.net/pub/shorewall/Snapshots
ftp://shorewall.net/pub/shorewall/Snapshots
Release Notes are attached
Changes since last Snapshot:
a) The per-interface dynamic blacklisting chains are now displayed by
"shorewall monitor"
b) IP Traffic Accounting support has been added.
c) Rules may now be rate-limited.
d) Bridge interfaces (br[0-9]) may now appear in entries in the
2003 Aug 28
5
Router for giving more than 1 ip
Hi i have a debian box working as a router.. it works quite well, now
i want to give more than 1 ip.. is it possible to do it? some of them
must be an open ip.. i mean.. all ports opened is it possible? how
should i do it?
Here is my nat.sh script just in case someone wants it.. (comments r
in spanish.. and not right)
Thanks in advance,
#!/bin/sh
echo "AthoS LaN Generando
2004 Sep 10
1
Is ProxyARP or NAT entries really neccesary for DNAT to work?
I have been trying to get DNAT to work and I actually have succeeded
too, however, not how I thought it would work when reading through the
documentation.
1. No matter what I do I cannot get DNAT to work unless I have an entry
in eiter the nat or the proxyarp file. Is that really how it''s supposed
to be? I can''t find anything about it in the documentation.
2. Also, in the
2004 Nov 05
1
Configuration with Windows clients
Yes, until now it works well : I had written a mistake in the smb.conf
!
Sorry
Thanks a lot
-----Message d'origine-----
De : samba-bounces+albert.hervo=sydel.fr@lists.samba.org
[mailto:samba-bounces+albert.hervo=sydel.fr@lists.samba.org]De la part
de Albert HERVO
Envoy? : vendredi 5 novembre 2004 13:25
? : Samba
Objet : TR: [Samba] Configuration with Windows clients
It doesn't
2003 Aug 12
1
Shorewall Keeps sending false IP Address Conflict
Dear All,
After installing Shorewall, on a router with 4 NIC, seems running ok.
Next day, when connecting from clients, (MS) we keep getting ip conflict for non-conflicting ip addresses.
Any help is appreciated.
Detals of Startup:
+ shift
+ nolock=
+ ''['' 1 -gt 1 '']''
+ trap ''my_mutex_off; exit 2'' 1 2 3 4 5 6 9
+ command=start
+
2004 Jan 21
3
FW: DNAT and masq problem with kernel 2.4.23
Hi,
after kernel upgrade to 2.4.23 my existing configuration of shorewal 1.4.8
will not start / it fail on DNAT and/or masq with message: "iptables:
Invalid argument" /
I founded some similar problems description - see links bellow, but there is
no solution how to get work shorewall with DNAT and masq with 2.4.23 kernel.
http://www.ussg.iu.edu/hypermail/linux/kernel/0312.0/0268.html
2005 Nov 25
1
2 WAN links and DNAT
Hi
Here is a short description of my network:
ppp0 (adsl) ppp1 (adsl)
| |
| |
---------------------
| Router |
| Firewall |
| MASQUERAD |
| DNAT |
| |
| eth0 |
---------------------
|
|
|
----------------------
|
2010 Jul 23
1
Windows client not accessible when changing ip address on samba PDC
Hi Everybody
I installed a Samba 3.4.5-3.1 PDC with openldap2-2.4.12-5.3, samba-winbind-3.4.5-3.1, bind-9.5.0P2-18.1 and dhcp-3.1.1-6.3 on a opensuse 11.1 based on Samba3-ByExample.pdf book.
I manage a network that has around 60 windows client computers (from windows 2000 to win 7) and quite of them are windows notebooks with 2 NIC's (wireless and cable)
and I was assigning two diferent
2006 Feb 21
1
[Bug 452] New: DNAT to internal network don't work with source routing and 2 uplinks
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=452
Summary: DNAT to internal network don't work with source routing
and 2 uplinks
Product: netfilter/iptables
Version: linux-2.6.x
Platform: i386
OS/Version: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P2
2005 Jan 25
2
DNS, DNAT and Notifies
I have a pretty straightforward shorewall (v 2.0.12) setup in my Phoenix
office.
IP addresses on the firewall
eth0 172.16.10.249
eth1 12.47.198.100
eth1:1 12.47.198.108
eth1:2 12.47.198.101
eth2 172.16.11.249
interfaces:
loc eth0 detect
net eth1 detect blacklist
dmz eth2 detect
vpn1 tun1 192.168.124.255
zones
net Net
2003 Feb 24
5
Bug in Shorewall check?
I made a boo boo in my config and put in this rule
#PPTP
DNAT net:213.67.241.162/217.209.46.204/32
loc:192.168.221.200 tcp 1723
DNAT net:213.67.241.162/32,217.209.46.204/32
loc:192.168.221.200 47 -
And the the following happened.. and I wonder why it didn''t complain? I
am sure I am just misunderstanding some doc
2004 Sep 29
4
Re: start error]
thanks again for your sharp eye and speedy response. i have corrected the typos in the IP in the masq file. I am sorry to have to ask for more help but my pc''s on the local network can''t reach the dmz webserver using the webserver''s local or Public IP address. I need to be able to do this in order to test the split DNS setup for the network. Using ethereal on the
2004 Apr 01
5
DNAT PPTP questions
I have two/three PPTP servers on my network and each one of them are on
their own subnet and I want to be able to send traffic to each and
everyone.
My rules file entry is as follows
DNAT net loc:1.1.1.1 tcp 1723
DNAT net loc:1.1.1.1 47
and
DNAT net loc:2.2.2.2 tcp 1723
DNAT net loc:2.2.2.2 47
however all the traffic only goes to 1.1.1.1 because its the first
DNAT entry.
I tried the
2008 Oct 01
2
DNAT Issue
Hi.
Im setting up a web farm test lab. I have a number of machines in the
test last on a dmz zone on network 10.20.30.0.
The test lab firewall has two NICS. One (eth0) has two ip addresses,
eth0 10.161.101.40 and eth0:0 10.161.10.49. The other one, eth1 is
on a private network, 10.20.30.0.
I want to use DNAT to allow test engineers to ssh into the machines in
the web farm. I have