| 156625544771_538460007597 | Marco Nicoloso |
|
|
|
| |
| 106426174187_547260007423 | Pradeep Jindal |
|
|
|
| |
| 167027554243_550060007427 | Hal Moroff |
|
Hi all,
I installed the "conntrack" command line tool on a Debian Linux 4.0 (etch) with a default 2.6.17 kernel. When I tried to execute the test script I found in the SVN repository (/net |
|
| |
| 160823964195_556360007356 | FranxE7ois Barel |
|
Hi.
Google for portknocking ! It is a solution for opening ports "at run time"
by accessing some, already closed ports, and sending a specific packet type.
You can add/delete iptables rul |
|
| |
| 145126694275_542060007894 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 189524074447_566560007782 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 126228564399_544960007483 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 187329984238_511660007601 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 154421054998_573960007069 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 109521194738_537160007580 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 126524344987_571260007778 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 149423614634_589460007962 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 137726834960_561560007457 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 121623434563_521460007231 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 128321774350_502160007890 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 160128144324_558860007423 | Jasbir Khehra |
|
|
|
| |
| 136620194784_500060007594 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 196322904277_592260007076 | Satvika Bejai |
|
|
|
| |
| 137821214419_594260007501 | Jasbir Khehra |
|
|
|
| |
| 117226194679_552360007227 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 141322414040_573760007566 | Satvika Bejai |
|
|
|
| |
| 116021964586_594560007499 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 153821594789_581660007694 | Rob Sterenborg |
|
|
|
| |
| 189224594816_531160007150 | Rob Sterenborg |
|
I tried this. But whatever patch, i try to apply i get the message "n
missing files "(n=1,2,3 etc..) and patch fails. Is it possible to apply
only the random patch and skip others. Also w |
|
| |
| 181225734770_549160007410 | utteerna |
|
utteerna wrote:
I want to use the iptables "-m random" option.
download linux 2.6.18 & iptables 1.3.6,
it is called "statistic match".
|
|
| |
| 171925104652_576060007482 | utteerna |
|
utteerna wrote:
I tried the following
1) Took 2.6.18.2 kernel source - Compiled it with "statistic match"
option on
2) Then compiled iptables 1.3.6 and installed it
But sti |
|
| |
| 132624074678_591260007875 | utteerna |
|
utteerna wrote:
3)Downloaded patch-o-matic-ng-20061108.tar and put it in /usr/src dir
and untarred it
You dont need POM.
---QUESTION-- Do i have to compile them in to the kernel rather tha |
|
| |
| 141128904033_520060007114 | Ury Segal |
|
On Friday 10 November 2006 08:38, utteerna wrote:
Heres steps i followed and error details. Please let me know if i
missed something
Are you running Debian or a Debian derivative?
1)Downloa |
|
| |
| 189425974574_570960007975 | Justin Schoeman |
|
Hallo!
Ich suche nach einer Möglichkeit ein externes Programm bei einem match
einer Regel auszuführen. Beispiel:
iptables ... -j exec("/usr/bin/beep -f 5000 -l 1000")
------- |
|
| |
| 186027204548_563060007644 | Pablo Neira Ayuso |
|
On Tue, 07 Nov 2006 08:51:50 +0200, Justin wrote in message
<45502D05.1050807@xxxxxxxxxxxxxxx :
Erik Alberti wrote:
Hallo!
Ich suche nach einer Möglichkeit ein externes Progr |
|
| |
| 104029294154_569260007401 | willutellmemore will |
|
Every time I try to login to bugzilla, I get error messages from DBI
rel="nofollow" bugzilla.netfilter.org/bugzilla/query.cgi?GoAheadAndLogIn=1 bugzilla.netfilter.org/bugzilla/query.cgi?GoAhea |
|
| |
| 117320134809_585260007159 | Rob Sterenborg |
|
Hi:
My network is like this:
A(IP:192.168.0.2) B(IP: 192.168.0.1)(IP:192.168.1.2)
C(IP:192.168.1.1)
(netmask:255.255.255.0) 255.255.255.0 255.255.255.0
255.255.255. |
|
| |
| 172723374049_576060007755 | Lawrence Daltron |
|
|
|
| |
| 187524314351_544860007258 | woger151 |
|
http tunneling?
Watch you squid logs.
Regards,
Steffen
I dont understand what you mean, please explain in less technical
words
Teddy L.
-------------------------------------------- |
|
| |
| 142320004978_597160007188 | lubasi |
|
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[ rel="nofollow" mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx ] On Beh |
|
| |
| 161526704116_576960007805 | Jasbir Khehra |
|
Hi
I have setup rules on my iptables and when i block yahoo,
only those using gaim IM client using yahoo are blocked but
the native yahoo IM client is passing through my firewall.
Whats w |
|
| |
| 116925364819_597960007745 | lee nookx |
|
|
|
| |
| 113721134081_518760007619 | Scott van Looy |
|
<citaat van="lee nookx"
Hi,
I am trying to find a way of transparently intercepting packets
flowing across my network, so that I can transform them for use in
another applicat |
|
| |
| 194227494049_529360007189 | Monty Ree |
|
|
|
| |
| 155126194189_552960007820 | Monty Ree |
|
|
|
| |
| 171722044490_583460007852 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 163921424387_545760007774 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 120222584888_528460007762 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 190323884510_595260007707 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 114122324326_533160007916 | Alan Ezust |
|
|
|
| |
| 115024774119_564160007092 | Alan Ezust |
|
|
|
| |
| 149229494235_588060007356 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 165426094615_554160007060 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 130327954448_581360007129 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
| 152028894361_584660007121 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
