Displaying 20 results from an estimated 300 matches similar to: "MASQUERADE problem again..."
2005 May 31
11
More Tests for 2.4.0-RC2 - strange behaviour
Hi all,
I was trying to test ROUTE specific code with a multi-isp serviced box.
There is a bug somewhere, but I''m not able to understand what the real
problem is:
when I issue a "shorewall show capabilities" I get:
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Shorewall has
2003 Aug 25
2
Mandrake Connection Sharing facility problem.
Hello everybody,
To make all clear; I am newbee in shorewall, but...
I''ve tried to connect two computers by Mandrake Connection Sharing facility.
(Mandrake 9.1).
Briefly, the problem is that after all that auto-configuration activities the
network is completely down, just because shorewall.
The result of calling `shorewall debug start` by hand is available at the end
of the
2018 May 14
2
multiple domain served by Samba
Dear All,
I have a working Samba AD for my company (company.intranet) under
Debian/GNU. Now I'm requested to create a domain for another company.
Can I use the same server with the same Samba for multiple domain? Can
same samba serve parallel the company.intranet (with company\user) and
the othercompany.intranet (othercompany\user) domains? May I just run
the samba-tool provision to
2003 Mar 23
12
Shorewall 1.4.1
This is a minor release of Shorewall.
WARNING: This release introduces incompatibilities with prior releases.
See http://www.shorewall.net/upgrade_issues.htm.
Changes are:
a) There is now a new NONE policy specifiable in
/etc/shorewall/policy. This policy will cause Shorewall to assume that
there will never be any traffic between the source and destination
zones.
b) Shorewall no longer
2008 Sep 16
3
xen on openSUSE
Dear developers!
I''ve found that recent xen releases cannot be simly run on openSUSE! The
script /etc/xen/scripts/xen-network-common.sh makes some incorrect
assumptions on the SuSE ifup script. Bridged xen networking only works
if the script executes this branch:
preiftransfer()
{
true
}
ifup()
{
false
}
ifdown()
{
false
}
Otherwise the xen networking scripts fail to put the
2002 Oct 23
23
"basic two-interface" setup problem
Hi,
I installed the shorewall 1.3.8-2 debian package to my debian testing
machine which serves as the gateway to the internet. Since I have two
other machine connect to internet thru this gateway machine, I also
downloaded the configuration guide for "basic two-interface firewall"
and
followed the instructions. When I try to start the shorewall I get the
following message and can not
2005 Feb 01
4
Shorewall problem
I am getting the following message when Shorewall stops can anybody shed
any light on this message and where I should be looking? Thanks
root@bobshost:~# shorewall stop
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Stopping Shorewall...Processing /etc/shorewall/stop ...
IP Forwarding Enabled
2003 Feb 25
0
Shorewall Setup.
Hello Tom and others on the list.
Tom - you might recall that the other day (night) I had problems with my
axip setup (protocol 93) and we made some changes to the policy, zones and
interfaces files. You added ''peers and tunl+''
Following that change nothing seemed to work. In fact you wanted to see
the shorewall status file, among other things.
Well - tonight, I carefully put
2004 Sep 29
10
DNAT + Masq Problem - Yes I read the FAQ I promise
I have a debian woody machine acting as a firewall for a small
network. I am trying to do a simple DNAT to port 80 on the protected
webserver and masquerade all traffic from the protect subnet outbound.
After having read the FAQ and various posts regarding problems with
DNAT I''m afraid I''m no closer to a solution. Based on the output from
"shorewall show nat" I
2004 Sep 29
0
Re: Shorewall-users Digest, Vol 22, Issue 65
Hi
I have 2nic firewall . I had to open some ranges of udp and tcp ports . I
faced a problem that although all the ports are open Some functionality was
not working . Any body used shorewall with H323 Voip traffic DNATed . Any
help is appretiated .
Thanks
----- Original Message -----
From: <shorewall-users-request@lists.shorewall.net>
To: <shorewall-users@lists.shorewall.net>
Sent:
2003 Feb 27
3
Unknown commments in shorewall status.
I wonder if someone can tell me what these ''unknown'' remarks mean in my
status file. They are only in the last portion of the file and are listed
below. If they mean nothing, I will rest easy. But if not it means
I need to fix something. Your thoughts would be appreciated.
----------------
udp 17 92 src=24.224.173.220 dst=24.222.0.75 sport=1027 dport=53
src=24.222.0.75
2004 Sep 02
3
Traffic shapping Bug ?
hello ,
i''m currently trying to set-up Traffic Shapping with Shorewall and I have strong
feelings that I found a bug.
I may be mistaken, but I tried everything and can''t get it to work.
I''ve turned ON TC_ENABLED=Yes and CLEAR_TC=Yes
when i start shorewall ( shorewall start ), i get this message :
Setting up Traffic Control Rules...
TC Rule "2 eth1 0.0.0.0/0 tcp
2004 Nov 29
2
SFTP
(anonymous post) I have a simple 2 interface firewall setup and all is
good, almost. I am hosting virtual websites and DNS behind shorewall no
problem. However I am trying to use SFTP via a different port number and
have no luck even though Putty works well. Is there anything weird to
sftp and shorewall? My lab uses a different firewall (firestarter) and
it works OK.
I am using;
DNAT net
2003 Aug 26
1
ADSL router, two nics, web server not visible from internet
I have an ADSL router, a linux box with two NICS connected to the
router and another PC connected to the router.
I installed shorewall using the two interface method.
I can ping and see the webserver on the linux box from the local
network, but not from the internet.
Sys info as follows:
[root@wilma root]# shorewall version
1.4.6b
[root@wilma root]# ip addr show
1: lo: <LOOPBACK,UP> mtu
2000 Jan 28
1
PATCH: 'source environment' param and % token subs for 'netbios name'
Attached please find unified diffs against Samba 2.0.6. I'm hoping that
others will find it useful and that it may even find its way into Samba
2.0.7
This patch does two things:
- Modifies the handling of the 'netbios name' parameter so that
standard_sub_basic() is run on its value when the 'netbios name'
parameter is processed.
This has to be done this way because
2004 Aug 27
3
Proxy Arp Ip Conflicts
I must have something configured wrong somewhere. I''ve enabled proxy-arp on my
shorewall 2.0.7 firewall. Works fine for what its supposed to do, I can see
all the machines through it great. However, whenever its enabled, the network
on the DMZ goes screwy. I''ve narrowed it down to this:
when proxy arp is enabled for that interface, like such:
echo 1 >
2009 Jul 22
1
Routing issue - Revisited
A number of weeks ago I had huge help from many of you configuring routing
on a server with multiple Internet facing nics. Thanks for all of your
help!!!!
I am still having a routing issue that I am hoping someone can help me
tweek. This server, besides acting as our gateway to the internet, is also
our web and email server. The server has 4 nics. Two are connected to the
internet and the
2004 Aug 05
9
Not able to access website
Hi,
Trying to figure out why I cannot get access to dell.com
Their site is up because I can browse using a different firewall.
Trying to find out where the logs are located and what log files it
would write to if it were to deny browsing to a website. I can see the
[UNREPLIED] when using the shorewall status. Was hoping to know what
logfile it is writing it to.
Thanks in advance,
Elmer
2005 Dec 08
3
trouble with shorewall on Mandriva 2006 (2nd)
(Sorry, my previous post was sent in HTML format)
I am having a hell of a time with shorewall...
I have a Dlink DCM202 Cable modem with the Ethernet connected directly to
eth0 on the linux box. Then I have a second nic on the linux box connected
to a hub for
the internal network.
I am trying to allow traffic from the internet connect to my FTP and WEB
servers on my Winbloze box on the lan.
2019 May 31
0
Re: Easy solution for custom firewall rules- is it possible?
Hi,
libvirts nwfilter module can achieve that.
I'm currently working on opt-out patches to disable that functionality
if wished. I also don't use firewalld.
It's both paternalizing and annoying and takes away user flexilibity in
exchange for nothing.
anyways
Check the nwfilter page to write own filters for the beginning:
https://libvirt.org/formatnwfilter.html#nwfwrite
some