similar to: FORWARD:REJECT messages in Shorewall

----------------------------------------------------------------------------- Shorewall 1.2.12 # uname -a Linux yoreach 2.4.18 #1 Sun Apr 21 12:50:34 CEST 2002 i686 unknown # ip addr show 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo 2: dummy0: <BROADCAST,NOARP> mtu 1500

I'm trying to sync from 3.0.5 to 2.5.5 (SCO, *sigh*) The source machine errors out b/c the --remove-source-files (or --remove-sent-files) options don't exist on 2.5.5. But, since these option are only acted on by the sending machine (which is where I'm typing the command line), it would be so nice if the source machine would NOT pass the option on to the receiver (or at least, not

I have 5 or 6 :-( different copies of a filesystem on various Linux boxen, all backups taken at different times, with different exclusions, and squirreled away. Now's the time to clean up my attic. I'd like to merge them all into one big filesystem. When there are different copies of the same files, I'd like to keep the newest; I don't know what else to do. My plan (assuming

On Friday 24 June 2005 20:57, Derek Vincent wrote: >>Hello all, >> >>I have shorewall setup with 3 SNAT entries for external IP address''s to >>a single IP internal address. I am wondering how to limit access based >>on the source IP address. >>ex. >> EXT IP 1 access only to port 25 >> EXT IP 2 access only to port 443 >> EXT IP 3

/**************************************************************************** * * * Always Be Conferencing (ABC) * * * * Creator: chris @ Penguin PBX Solutions * *

I have a 3 nic setup with shorewall 1.4.8-1 running on redhat 9. My eth2 (dmz zone)has 7 secondary address attached to it. I can ping a machine in each subnet, dmz to net rules seem to be working fine on all machines.. I have my policy set as dmz to dmz accept. If I try to ping between subnets I get Nov 21 12:18:45 kbeewall kernel: Shorewall:FORWARD:REJECT:IN=eth2 OUT=eth2 SRC=172.17.0.2

Hi, I am running OpenVPN where i have one central hub VPN server, and multiple spoke VPN clients. I can ping from each client to the server and each client to computers on the subnet which the server resides (192.168.2.0/24) so it works ok there. I cannot however, ping from one client to another client. I guess the packet path would go: clienta -> vpn -> shorewall/router -> vpn ->

Hi all, I have a series of cateogiral variables that look just like this: welfare=sample(c("less", "same", "more"), 1000, replace=TRUE) education=sample(c("less", "same", "more"), 1000, replace=TRUE) defence=sample(c("less", "same", "more"), 1000, replace=TRUE) egp=sample(c("salariat",

Hi to all, Is there a way we can fit a non linear model to a data using non linear least square method without necessarily initialising the parameters of the model. I find it hard to get the initial value of the parameter. Below is a sample of the code I have. *nachman<-nls(OARmedium$OCCUPANCY~1exp(-alpha*OARmedium$MEAN^beta),start=list(alpha=0.2,beta=0.1),data=OARmedium)summary(nachman)*

Hello all, I have shorewall setup with 3 SNAT entries for external IP address''s to a single IP internal address. I am wondering how to limit access based on the source IP address. ex. EXT IP 1 access only to port 25 EXT IP 2 access only to port 443 EXT IP 3 access only to port 80 I have the SNAT setup correctly and I have 3 accept line in the rules file (25,80,443) but I can hit

Adjust drivers that support the 'FLOW_DISSECTOR_KEY_META' key to reject filters that try to match on the newly added layer 2 miss option. Add an extack message to clearly communicate the failure reason to user space. Example: # tc filter add dev swp1 egress pref 1 proto all flower skip_sw l2_miss true action drop Error: mlxsw_spectrum: Can't match on "l2_miss". We have

Yesterday we moved one of our servers to a new IP. We updated DNS and various adapters configured to register to that server registered to the new IP correctly. All seemed to be well. This evening I discovered that with one exception, all of the adapters are getting a SIP/2.0 401 Unauthorized message back from asterisk. The exception is an Innomedia adapter -- Linksys PAP2's and (I

Hi to All, I am building a package in R and whenever I run command "R CMD build OAR" in the terminal, I get the following error: * checking for file ?OAR/DESCRIPTION? ... OK * preparing ?OAR?: * checking DESCRIPTION meta-information ... ERROR Malformed Depends or Suggests or Imports or Enhances field. Offending entries: R (>=3.0.2) Entries must be names of packages optionally

Hi, Pretty sure I'm missing something simple, but I've seen references to this feature but not found documentation for it: I have a queue set up so that many people are contacted (ringall) when a call comes in. I would like the answering party to confirm that he is a human being rather than cellphone voicemaill by pressing a digit. This is somewhat similar to the 2nd macro example

I have had to replace an existing setup which has a bunch of IPs Proxy-NAT''ed onto the loc segment. While I do eventually want to move them to their own segment, I have to deal with this for the next few weeks. My problem is that from a loc system I can ping the public IP of a system being proxy-ARP''d but I can''t hit it via HTTP. Nothing is being blocked according

Hi, I have a Dell PowerEdge 1950 with two NICs Broadcom NetXtreme II BCM5708 1000Base-T. I installed CentOS 5.1 and Xen 3.0.3 (RPM). One of my virtual machines has Windows 2003 Server. In this virtual machine my NICs appears like "Realtek RTL8139 Family PCI Fast Ethernet NIC". The problem is that when I ping to other machines sometimes the reply time value is very high: C:>

I have a data frame that looks like this: url time somethingirrelevant visits www.foo.com 1:00 xxx 100 www.foo.com 1:00 yyy 50 www.foo.com 2:00 xyz 25 www.bar.com 1:00 xxx 200 www.bar.com 1:00 zzz 200 www.foo.com 2:00 xxx 500 I'd like to write some code that takes this as input and outputs

I''m getting my zones confused. Help. I need to have a bunch of systems using OpenVPN to gain an IP in the virtual subnet 10.100.1.0/24, on interface tun0. I will then route whole subnets to those IPs, like 10.100.2.0/24 via 10.100.1.12, etc. I want to have a policy for: - all hosts behind tun0 - all hosts in 10.100.1.0/24 - individual subnets being routed through IPs in

Hi everyone, I run MCollective 1.2.1 together with ActiveMQ 5.5 under Scientific Linux 6.1 on Amazon EC2. Overall it works like a charm, but sometimes (eg. 1/30) discovery fails. Still the exit-code of mco will be 0, which is a problem for me as I use MCollective e.g. to trigger deployments from Jenkins. I would like to ask for some feedback on the following ideas, that could fix this problem.

Hi, I was wondering if somebody could assist me in the following I have a lan with a mail server, a fixed outside ip address leased line router at 10.1.1.1, and a dynamic outside ip address adsl router at 10.1.1.5 Our linux mail server always used to have the leased line router at 10.1.1.1, but now with our adsl, I''d like traffic to go across 10.1.1.5, I thought it would be straight