| 151521184269_571260007273 | Marco Nicoloso |
|
|
|
| |
| 123422744428_557360007499 | Pradeep Jindal |
|
|
|
| |
| 100420194711_563360007134 | Hal Moroff |
|
Hi all,
I installed the "conntrack" command line tool on a Debian Linux 4.0 (etch) with a default 2.6.17 kernel. When I tried to execute the test script I found in the SVN repository (/net |
|
| |
| 171028664146_520060007472 | FranxE7ois Barel |
|
Hi.
Google for portknocking ! It is a solution for opening ports "at run time"
by accessing some, already closed ports, and sending a specific packet type.
You can add/delete iptables rul |
|
| |
| 121424864318_572460007999 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 119120014116_546060007565 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 173429484839_516160007213 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 166025254233_537160007710 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 150528684575_565160007170 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 112322834656_544260007141 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 144021974143_555760007856 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 112223914803_596260007324 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 117422124849_540760007006 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 111720884875_569260007943 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 186228634225_551760007232 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 165927454430_580260007087 | Jasbir Khehra |
|
|
|
| |
| 165824244478_546160007030 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 178525604243_563460007827 | Satvika Bejai |
|
|
|
| |
| 164120844916_551560007655 | Jasbir Khehra |
|
|
|
| |
| 145826384517_568460007822 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 191728154566_534660007869 | Satvika Bejai |
|
|
|
| |
| 143322754292_591260007678 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 194325204238_518660007206 | Rob Sterenborg |
|
|
|
| |
| 101327944291_592960007067 | Rob Sterenborg |
|
I tried this. But whatever patch, i try to apply i get the message "n
missing files "(n=1,2,3 etc..) and patch fails. Is it possible to apply
only the random patch and skip others. Also w |
|
| |
| 158427684706_510060007862 | utteerna |
|
utteerna wrote:
I want to use the iptables "-m random" option.
download linux 2.6.18 & iptables 1.3.6,
it is called "statistic match".
|
|
| |
| 192223674676_548860007293 | utteerna |
|
utteerna wrote:
I tried the following
1) Took 2.6.18.2 kernel source - Compiled it with "statistic match"
option on
2) Then compiled iptables 1.3.6 and installed it
But sti |
|
| |
| 135621474568_564960007304 | utteerna |
|
utteerna wrote:
3)Downloaded patch-o-matic-ng-20061108.tar and put it in /usr/src dir
and untarred it
You dont need POM.
---QUESTION-- Do i have to compile them in to the kernel rather tha |
|
| |
| 132720014825_556660007978 | Ury Segal |
|
On Friday 10 November 2006 08:38, utteerna wrote:
Heres steps i followed and error details. Please let me know if i
missed something
Are you running Debian or a Debian derivative?
1)Downloa |
|
| |
| 177222014772_506360007081 | Justin Schoeman |
|
Hallo!
Ich suche nach einer Möglichkeit ein externes Programm bei einem match
einer Regel auszuführen. Beispiel:
iptables ... -j exec("/usr/bin/beep -f 5000 -l 1000")
------- |
|
| |
| 113027144849_583760007300 | Pablo Neira Ayuso |
|
On Tue, 07 Nov 2006 08:51:50 +0200, Justin wrote in message
<45502D05.1050807@xxxxxxxxxxxxxxx :
Erik Alberti wrote:
Hallo!
Ich suche nach einer Möglichkeit ein externes Progr |
|
| |
| 169827374668_537460007382 | willutellmemore will |
|
Every time I try to login to bugzilla, I get error messages from DBI
rel="nofollow" bugzilla.netfilter.org/bugzilla/query.cgi?GoAheadAndLogIn=1 bugzilla.netfilter.org/bugzilla/query.cgi?GoAhea |
|
| |
| 166825814529_523560007588 | Rob Sterenborg |
|
Hi:
My network is like this:
A(IP:192.168.0.2) B(IP: 192.168.0.1)(IP:192.168.1.2)
C(IP:192.168.1.1)
(netmask:255.255.255.0) 255.255.255.0 255.255.255.0
255.255.255. |
|
| |
| 154025584590_536460007779 | Lawrence Daltron |
|
|
|
| |
| 134228964980_511360007110 | woger151 |
|
http tunneling?
Watch you squid logs.
Regards,
Steffen
I dont understand what you mean, please explain in less technical
words
Teddy L.
-------------------------------------------- |
|
| |
| 119520894825_504460007639 | lubasi |
|
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[ rel="nofollow" mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx ] On Beh |
|
| |
| 134526244376_501360007600 | Jasbir Khehra |
|
Hi
I have setup rules on my iptables and when i block yahoo,
only those using gaim IM client using yahoo are blocked but
the native yahoo IM client is passing through my firewall.
Whats w |
|
| |
| 139526654181_592460007411 | lee nookx |
|
|
|
| |
| 151224404970_510160007092 | Scott van Looy |
|
<citaat van="lee nookx"
Hi,
I am trying to find a way of transparently intercepting packets
flowing across my network, so that I can transform them for use in
another applicat |
|
| |
| 188021464988_586060007947 | Monty Ree |
|
|
|
| |
| 197124554036_579560007962 | Monty Ree |
|
|
|
| |
| 143428454586_581060007584 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 141022524249_559260007150 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 100326884590_597360007394 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 106426694541_505260007801 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 200024994255_503560007755 | Alan Ezust |
|
|
|
| |
| 199827294600_558460007457 | Alan Ezust |
|
|
|
| |
| 116729504709_541660007885 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 156625454572_515660007361 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 155125824030_509160007559 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
| 189226344058_514760007353 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
