Displaying 20 results from an estimated 700 matches similar to: "iproute and shorewall"
2006 Aug 04
1
Can't get rid of SYN_RECV
OK, Something wacky. I'm getting many, many of these, it just keeps
building:
--snip--
netstat -vat:
tcp 0 0 192.168.103.99:http statusurl.e-gold.com:57015
SYN_RECV
tcp 0 0 192.168.103.99:http statusurl.e-gold.com:26377
SYN_RECV
tcp 0 0 192.168.103.99:http statusurl.e-gold.com:64279
SYN_RECV
tcp 0 0
2015 Jul 29
2
Deafness
> On Jul 28, 2015, at 21:52 , Steffan Cline <steffan at hldns.com> wrote:
>
> Ok, I think I have come a little further.
>
> When dovecot stops accepting connections, I checked netstat and found this:
>
> [root at hosting1 ~]# netstat -an | grep 993
> tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN
> tcp 0 0
2015 Jul 28
3
Deafness
Permissions to the logs are fine. In /var/log/maillog I do see dovecot logging in there but nothing that indicates why there?s a failure.
The one thing I thought of is if there?s too many connections but I am using a firewall that blocks excessive attempts but that?s fine. Netstat shows a bunch of CLOSE_WAIT though.
I?ll try the debug level and see what I find.
Thanks,
Steffan Cline
steffan at
2010 Jan 27
5
sshd killed due to dos attack
Hi,
I am not sure to report this as a bug. so mailing to the list.
I have sshd(openssh3.5p1) server running on my router and when i run tcpjunk
to that port, sshd gets killed after some time
192.168.71.1 is my sshd server and 192.168.71.4 is my client from where i
send my dos attack
This is the tcpjunk command i gave to the ssh server
#tcpjunk -s 192.168.71.1 -p 22 -c req -i 100
req session
2015 Jul 29
2
Deafness
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Tue, 28 Jul 2015, Steffan Cline wrote:
> When dovecot stops accepting connections, I checked netstat and found this:
>
> [root at hosting1 ~]# netstat -an | grep 993
> tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN
> tcp 0 0 65.39.x.x:993 184.101.x.x:36351 SYN_RECV
2007 Jan 22
1
How to close SYN_RECV on port 80 ?
Hello,
today I came to my job and I noticed that apache is not running. When I
tried to run it, I learned that port 80 uis already in use.
Using netstat -aenpl I tried to learn wha proces is using port 80, but I
only leatned this:
tcp 0 0 172.16.0.1:80 172.16.0.1:35664 SYN_RECV 0 0 -
tcp 0 0 172.16.0.1:80 172.16.0.1:43464 SYN_RECV 0 0 -
tcp 0 0 172.16.0.1:80 172.16.0.1:33764 SYN_RECV 0 0 -
tcp
2001 Jun 18
1
make scp more script-capable
Hi,
here's a proposal of a new ssh/scp-feature:
-------------------------------------------------------
please implement a timeout with non-zero error-returncode on
"Are you sure you want to continue connecting (yes/no)?"
-------------------------------------------------------
My situation:
recently I have implemented a cronjob
that is using scp. Due to organizational
2011 May 11
1
[LLVMdev] compiling with libstdc++.a that "could not read symbol"
Hi there,
I have a question on my linux box where I cant link properly. I've tried
configure option --enable-shared or --disable-shared.
The following are the message I got. Is there anything I can do to fix this
linking/lib problem?
thanks in advance,
Tim
ps.
make[3]: Entering directory
`/remote/dept5428a/clientstore/timoshiu/timoshiu_esp_main_llvm/obj/lib/Transforms/Hello'
llvm[3]:
2007 May 18
3
Puppetmaster wierdness
Anybody else experience the need to restart puppetmasterd before a node can
register itself.
I''ve been cleaning up my installation here on client nodes and every once
and a while I find myself needing to restart the puppetmaster daemon. A
client node attempts to connect and never does. A restart fixes things.
There doesn''t seem to be anything useful in the error messages
2006 Aug 01
2
IProute/conntrack issues
Hi everybody,
sorry for posting again, however I''ve moved the problem now ;-)
After digging a bit deeper, I''ve successfully set up the routing as
such, it works for incoming as well as outgoing packets that take the
default route.
Changing some of the routes using IP works as well.
When I mark some outgoing packets in order to send them via another
route (the fast leased line
2004 Aug 22
12
Tom''s Key
Since you''ve started signing your email, Tom, my machine can''t
verify your sig. Where are you publishing your key?
--
John Andersen - NORCOM
http://www.norcomsoftware.com/
2005 Jan 02
1
Linksys router and shorewall
I''m not a subscribed user, so please cc me on any replies
(fier0@bigfoot.com).
I know this has been asked a few times, but i have not been able to find
a direct answer. I was using shorewall with 2 nics, and it worked fine,
except if that linux box went down then nobody could get out to the
internet (and the wife would kick my ass). I''ve now started to use my
linksys
2003 Aug 10
2
Accounting
If you downloaded a version of the ''firewall'' script earlier that 1.294,
please upgrade to that version; earlier versions have problems - 1.293
has a syntax error for example :-(
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2001 Mar 25
1
Wine + HL(CS) + V3 = opengl mode not supported !?
K I finally got HL to start correctly by not using my installed win98 as
base. Now when I try to join a game in Counterstrike I get an "selected
opengl mode not supported by your hardware" error from HL. This is only the
case when I select the 3DfxMiniGL Driver (as I got a voodoo3). With Default
opengl driver it works, but i get 4 fps. With Softwaremode I get 15fps but
thats both
2001 Apr 04
1
Mesa with voodoo3
OK I downloaded and compiled Mesa 3.4.1, the gears demo runs at about 140
fps so thats not looking like real hw accel ;) I downloaded a prebuilt
gears from the dri webpage and I get 1300 fps even after I uninstalled my
Mesa because it did not work together with Quake3 (always told me no
hardware accel available) So I reverted to the libGL.so that came with my
X4.0.2 binary tars. My glide3 is
2004 Apr 19
3
Premission
Hello
i am new to this list so i hope this question havent been asked for.
i want a user on windows ( admin ) that has access to all userfiles
on the samba server:
/home/user1 ; / home/user2/
no i made a schare for /home
the problem is: i can access all files in the userdirectory, but i canot
access a subdirectory in the userdierecory.
any help would be nice.
sorry for my englih
Greatings
2005 Feb 13
0
Shaping question - tunnel
Hello,
I''m being confrunted with the following situation and I''m trying to
find the simplest solution possible as to also be easier to manage.
1)
I have:
ISP1 ------ S1 (linux)
S1''s got:
512kbits external bandwidth from ISP1
20Mbits MAN bandwidth not including ISP2
17Mbit tunnel connection which provider : 1 Mbit external bandwidth
and 16Mbit MAN bandwidth with
2003 Sep 19
1
ip rule add (Changing order of rules?)
I need to route:
from 196.33.50.0/25 (default route) to ISP1
from 196.33.248.0/24 (default route) to ISP2
ISP1 --------- fire --+---- 196.33.248.0/24
/ |
ISP2 --------/ +---- router ----- router ----- 196.33.50.0/25
What I''ve done:
Default route via ISP1
created routing table ISP2 for default route via ISP2
I would like to do the following but they get
2003 Oct 31
0
Policy routing with IPTABLES MARK (please help me)
Hello,
I have a LINUX server with two internet connections available.
I want all the traffic to go over the default route, but HTTP traffic
to go over ISP2 line.
Interfaces:
eth1 192.168.2.254 - LAN 192.168.2.x
ppp0 x.x.x.106 - remote gateway x.x.x.6 - ISP1 (default route)
eth0 192.168.164.254 - remote gateway 192.168.164.113 - ISP2 (a
hardware router)
I have the following configuration:
echo
2001 Dec 25
1
[printers], admin users, "print operators" deleting other people's jobs
Hello all.
I've been running Samba for quite some time but am now trying to move it
up from (some rather limited) file sharing into being a full PDC for our
network. I figured out all the "hard stuff" but am having a heck of a
time with the printing.
What I need to make sure of is that certain people can pause/delete, etc
print jobs for other users, as well as start or stop the