| 106928014051_578460007477 | Marco Nicoloso |
|
|
|
| |
| 116422924311_591260007710 | Pradeep Jindal |
|
|
|
| |
| 168026954804_530560007426 | Hal Moroff |
|
Hi all,
I installed the "conntrack" command line tool on a Debian Linux 4.0 (etch) with a default 2.6.17 kernel. When I tried to execute the test script I found in the SVN repository (/net |
|
| |
| 184220664263_551960007659 | FranxE7ois Barel |
|
Hi.
Google for portknocking ! It is a solution for opening ports "at run time"
by accessing some, already closed ports, and sending a specific packet type.
You can add/delete iptables rul |
|
| |
| 173728294867_554960007936 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 101921544736_507060007305 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 154821034597_585960007452 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 156826944147_537260007328 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 179828414395_506160007124 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 172020964954_558760007038 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 152326654193_525860007131 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 156422834234_516060007249 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 161327114944_576060007943 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 108828814784_548360007143 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 160726624240_556060007886 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 159927724551_579260007286 | Jasbir Khehra |
|
|
|
| |
| 192325944569_515760007712 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 140723674422_535060007505 | Satvika Bejai |
|
|
|
| |
| 129322154385_507660007327 | Jasbir Khehra |
|
|
|
| |
| 122023054989_546060007238 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 134524644009_589660007039 | Satvika Bejai |
|
|
|
| |
| 118221784633_575260007387 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 146327434754_588660007881 | Rob Sterenborg |
|
|
|
| |
| 139023854096_577660007794 | Rob Sterenborg |
|
I tried this. But whatever patch, i try to apply i get the message "n
missing files "(n=1,2,3 etc..) and patch fails. Is it possible to apply
only the random patch and skip others. Also w |
|
| |
| 110326824099_509260007965 | utteerna |
|
utteerna wrote:
I want to use the iptables "-m random" option.
download linux 2.6.18 & iptables 1.3.6,
it is called "statistic match".
|
|
| |
| 133024884428_533960007684 | utteerna |
|
utteerna wrote:
I tried the following
1) Took 2.6.18.2 kernel source - Compiled it with "statistic match"
option on
2) Then compiled iptables 1.3.6 and installed it
But sti |
|
| |
| 137925664863_501160007198 | utteerna |
|
utteerna wrote:
3)Downloaded patch-o-matic-ng-20061108.tar and put it in /usr/src dir
and untarred it
You dont need POM.
---QUESTION-- Do i have to compile them in to the kernel rather tha |
|
| |
| 139927814942_515360007034 | Ury Segal |
|
On Friday 10 November 2006 08:38, utteerna wrote:
Heres steps i followed and error details. Please let me know if i
missed something
Are you running Debian or a Debian derivative?
1)Downloa |
|
| |
| 103320564420_513060007882 | Justin Schoeman |
|
Hallo!
Ich suche nach einer Möglichkeit ein externes Programm bei einem match
einer Regel auszuführen. Beispiel:
iptables ... -j exec("/usr/bin/beep -f 5000 -l 1000")
------- |
|
| |
| 192429374564_502360007706 | Pablo Neira Ayuso |
|
On Tue, 07 Nov 2006 08:51:50 +0200, Justin wrote in message
<45502D05.1050807@xxxxxxxxxxxxxxx :
Erik Alberti wrote:
Hallo!
Ich suche nach einer Möglichkeit ein externes Progr |
|
| |
| 198823584193_541660007577 | willutellmemore will |
|
Every time I try to login to bugzilla, I get error messages from DBI
rel="nofollow" bugzilla.netfilter.org/bugzilla/query.cgi?GoAheadAndLogIn=1 bugzilla.netfilter.org/bugzilla/query.cgi?GoAhea |
|
| |
| 110020764143_596360007461 | Rob Sterenborg |
|
Hi:
My network is like this:
A(IP:192.168.0.2) B(IP: 192.168.0.1)(IP:192.168.1.2)
C(IP:192.168.1.1)
(netmask:255.255.255.0) 255.255.255.0 255.255.255.0
255.255.255. |
|
| |
| 116124874242_510260007909 | Lawrence Daltron |
|
|
|
| |
| 113726744965_555760007798 | woger151 |
|
http tunneling?
Watch you squid logs.
Regards,
Steffen
I dont understand what you mean, please explain in less technical
words
Teddy L.
-------------------------------------------- |
|
| |
| 143827284735_500260007763 | lubasi |
|
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[ rel="nofollow" mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx ] On Beh |
|
| |
| 170827394121_590260007820 | Jasbir Khehra |
|
Hi
I have setup rules on my iptables and when i block yahoo,
only those using gaim IM client using yahoo are blocked but
the native yahoo IM client is passing through my firewall.
Whats w |
|
| |
| 147922554897_562360007985 | lee nookx |
|
|
|
| |
| 108323794471_532560007111 | Scott van Looy |
|
<citaat van="lee nookx"
Hi,
I am trying to find a way of transparently intercepting packets
flowing across my network, so that I can transform them for use in
another applicat |
|
| |
| 123326204785_519860007589 | Monty Ree |
|
|
|
| |
| 199726154316_573160007067 | Monty Ree |
|
|
|
| |
| 149323254807_561560007962 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 143427064216_533060007435 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 131524114815_578760007296 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 189829704916_568360007092 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 127121644707_558860007323 | Alan Ezust |
|
|
|
| |
| 165523894648_546160007875 | Alan Ezust |
|
|
|
| |
| 142324384580_564060007908 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 107420834318_588960007055 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 118527684024_510160007193 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
| 119327214357_590060007252 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
