similar to: Shorewall on FC3?

Hello. Trying to get shorewall to do what I want it to do and also not to do what I don''t, I have the following example which I''d like to ask about. I get this log message: Nov 9 11:06:36 fw kernel: Shorewall:all2all:REJECT:IN=eth1 OUT= MAC=00:c0:4f:60:b3:e5:08:00:20:b0:92:c1:08:00 SRC=192.168.1.59 DST=192.168.1.1 LEN=84 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=942

Hello all. You might understand by now that I''m experimenting with shorewall on my FC3 (kinda) system. It''s a two interfaced system, with the internet on eth0, net, and the local network on eth1, loc. the machine fw runs shorewall 2.0.10 right now. The thing is that I want to try to use NIS/YP on the local machines and have fw run the ypserv. Furthermore, I''d like

I have taken your samba-3.0.0beta2-1.src.rpm, added a little sparc thingy tp the spec file, and made a "new" src.rpm, and a sparc binary rpm. NTW, Aurora SPARC Linux is based on Red Hat Linux, currently ansel release on 7.3 and a work-in-progress on 9, see auroralinux.org. If you want them, how do I upload them? Cheers, /ChJ

Hello - I am not a subscriber to the mailing, please email me with help at mfabache@yahoo.com My shorewall (v2.0.1) has been working wonderful for the past year. I just added my Vonage and cannot get the Phone Adapter to sync up (2 blinks (looking for IP)) All I have done is run an ethernet cable from the WAN outlet on the phone adapter to a lan port on the router. After googling, I found

Hello All, I have installed Shorewall 2.0.7 and configured , I am using masq to share internet for users. I have problem of perticular sites . I blocked site IP address. and succeeded but i have problem of Public proxy addresses , some user use anonymous proxy Ip and get thru it and use blocked sites. I blocked Public proxy adresses but it lot of them( I mean more than one public proxy

I am a new user of shorewall, and am having some difficulty getting it set up on a new Fedora Core 3 system. When I run the shorewall script in the /etc/init.d the following errror message is received. tarting shorewall: ./shorewall: line 26: 10555 Terminated $exec start >/dev/null 2>&1 [FAILED]

All, I've updated the open-vm-tools packages that have been floating around to the latest release - 4/25/2010 - for those that are interested. There is quite a bit of new additions/changes over the past year such as the addition of a fuse driver for vmblock devices, vmxnet3, pvscsi, etc. SRPMS and .spec's available here: http://www.davehollis.com/packages/open-vm-tools-kmod.spec

Shorewall (as of 1.4.5) currently doesn''t work "out-of-the-box" with the recently released 2.6.0-test1 kernel. Fortunately, the problems are trivial and easy to fix. The check for OS version only checks for 2.4* and 2.5*, 2.6* obviously needs to be added to this. The next part is with loading the modules. Currently, loadmodule checks for $MODULESDIR/$module.o or

Hi all, I have set up a working OpenVPN2 connection between my Server and my gateway at home. Now I want all traffic to be routed through this VPN connection. Currently everything is going through eth1 to the internet (to the gateway of the University which forwards it to the internet :-). We must use a prox-server and because of this I am not abel to watch the real-Media streams on

Hi all, We want to do some stress testing of firewall configurations/hardware. We have discovered hping that seems a great tool for this, but funny enough Shorewall cuts it !!! even when you leave ports open :) So besides hping, any tool for this? Why is shorewall cutting this traffic? Thanks in advance. Regards. -- Jaime Nebrera - jnebrera@eneotecnologia.com Consultor TI - ENEO

I said: > # MSS CLAMPING > # Your kernel must have CONFIG_IP_NF_TARGET_TCPMSS set. > > I''ve activated the option, but to no result watsoever. > Checked my kernel config, and it states that CONFIG_IP_NF_TARGET_TCPMSS is a > loadable module, that should be loaded on demand. > Simon said: > Did you try adding it to /etc/shorewall/modules ? Actually, no I

(Appologies if you receive this twice, GMANE seems to have lost my original posting.) I currently have a setup where 20 remote networks are router through IPsec tunnels and I am using Shorewall''s terrific support for the kernel policy match module. I also have mobile clients using OpenVPN to connect into our head office network in setup bridged setup. All is good. (Thanks Tom for your

I have been given a set of "firewall rules" to open my firewall for DCC to support my spam filtering. (I have done many web searches trying to find info relating to DCC with Shorewall, to no avail. The problem is that I am clueless on how these "rules" translate into the shorewall rule format. Could someone please help me translate these? allow udp local gt 1023 to remote

Hi, I had set rules so that my client can only visit few sites instead of the whole net. My question is, how can I allow my client to activate it''s product key and also to run windows update? One more thing is, can I use domain name in the rule config? if yes, can I put just microsoft.com to refer to aaa.microsoft.com bbb.microsoft.com? Please advice

I would like to understand how to make my samba-3.0.0 (-15, from Fedora Core 1) a PDC and how to make a XP/Pro box member of that domain and to add a domain user account, and eventually to ad a few more linux boxen as domain members into that domain. This is the output of the PDC box testparm (the PDC box has two eth interfaces, only eth1 (192.168.1.* and 127.0.0.1 should access the PDC):

I'm running Red Hat Linux 5.0/Intel with samba-1.9.18p7-50.1. The PC I have has a hard disk with a /dev/hda1 which is a Win 95 partition and a /dev/hda3 which is a Linux partition. The mount looks like this: /dev/hda3 on / type ext2 (rw) /dev/hda1 on /win95 type vfat (rw,gid=100,umask=0002) and the gid=100 is the group users and contains only myself, chj. The mount point /win95 is owned by

hi, there is no support for patch-o-matic netfilter modules. what i have to do if i want to use several patch-o-matic modules? which parts of code has to be changed and will that changed be included into the main shorewall tree in future or not? best regards claus

First of all, My apologies for this maybe slight OT post, but I have so much confidence and read so much good replies on this list, that I am still asking my question. I''m looking for a linux distribution to use on our school''s homemade routers. The routers are small miniITX based systems with 2 network interfaces. I added a 4 port D-Link network card in some cases, when I

Hello, Since FC3 has been a very recent release I was just wondering if there are issues related to asterisk installation on FC3. Thanks Varun

Problem: "Firewall" machine cannot get DNS but is allowing DNS through internally. Something changed with the configuration but we''re not sure what. Here is the pertinent info: Shorewall Status Entries Oct 5 09:24:50 all2all:REJECT:IN= OUT=eth2 SRC=192.168.7.55 DST=65.175.131.201 LEN=55 TOS=0x00 PREC=0x00 TTL=64 ID=50982 DF PROTO=UDP SPT=32973 DPT=53 LEN=35 Oct 5