| 168328934235_522660007506 | Marco Nicoloso |
|
|
|
| |
| 191929904802_529260007756 | Pradeep Jindal |
|
|
|
| |
| 141920774053_514660007022 | Hal Moroff |
|
Hi all,
I installed the "conntrack" command line tool on a Debian Linux 4.0 (etch) with a default 2.6.17 kernel. When I tried to execute the test script I found in the SVN repository (/net |
|
| |
| 149620834998_570560007272 | FranxE7ois Barel |
|
Hi.
Google for portknocking ! It is a solution for opening ports "at run time"
by accessing some, already closed ports, and sending a specific packet type.
You can add/delete iptables rul |
|
| |
| 108922954528_563360007255 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 110224754148_533760007653 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 184426204643_564560007149 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 140123324226_545460007076 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 147729754159_547560007230 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 174727694526_527460007319 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 153025034795_567860007496 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 133026844116_597460007029 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 112227304361_534860007840 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 142526614815_558460007493 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 181528834262_534060007664 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 166026874167_545460007007 | Jasbir Khehra |
|
|
|
| |
| 195026954692_506660007020 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 109527904751_545660007935 | Satvika Bejai |
|
|
|
| |
| 129625634595_511060007731 | Jasbir Khehra |
|
|
|
| |
| 160429634614_586760007771 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 153029634457_569760007822 | Satvika Bejai |
|
|
|
| |
| 170523664517_539660007185 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 141625274976_516660007114 | Rob Sterenborg |
|
|
|
| |
| 110122794678_569760007825 | Rob Sterenborg |
|
I tried this. But whatever patch, i try to apply i get the message "n
missing files "(n=1,2,3 etc..) and patch fails. Is it possible to apply
only the random patch and skip others. Also w |
|
| |
| 142729954787_504060007089 | utteerna |
|
utteerna wrote:
I want to use the iptables "-m random" option.
download linux 2.6.18 & iptables 1.3.6,
it is called "statistic match".
|
|
| |
| 181223904051_526960007467 | utteerna |
|
utteerna wrote:
I tried the following
1) Took 2.6.18.2 kernel source - Compiled it with "statistic match"
option on
2) Then compiled iptables 1.3.6 and installed it
But sti |
|
| |
| 109127924834_560860007265 | utteerna |
|
utteerna wrote:
3)Downloaded patch-o-matic-ng-20061108.tar and put it in /usr/src dir
and untarred it
You dont need POM.
---QUESTION-- Do i have to compile them in to the kernel rather tha |
|
| |
| 179426044792_576960007775 | Ury Segal |
|
On Friday 10 November 2006 08:38, utteerna wrote:
Heres steps i followed and error details. Please let me know if i
missed something
Are you running Debian or a Debian derivative?
1)Downloa |
|
| |
| 188428734054_556160007444 | Justin Schoeman |
|
Hallo!
Ich suche nach einer Möglichkeit ein externes Programm bei einem match
einer Regel auszuführen. Beispiel:
iptables ... -j exec("/usr/bin/beep -f 5000 -l 1000")
------- |
|
| |
| 138529974439_517260007299 | Pablo Neira Ayuso |
|
On Tue, 07 Nov 2006 08:51:50 +0200, Justin wrote in message
<45502D05.1050807@xxxxxxxxxxxxxxx :
Erik Alberti wrote:
Hallo!
Ich suche nach einer Möglichkeit ein externes Progr |
|
| |
| 126128494690_531360007778 | willutellmemore will |
|
Every time I try to login to bugzilla, I get error messages from DBI
rel="nofollow" bugzilla.netfilter.org/bugzilla/query.cgi?GoAheadAndLogIn=1 bugzilla.netfilter.org/bugzilla/query.cgi?GoAhea |
|
| |
| 178122094569_561460007757 | Rob Sterenborg |
|
Hi:
My network is like this:
A(IP:192.168.0.2) B(IP: 192.168.0.1)(IP:192.168.1.2)
C(IP:192.168.1.1)
(netmask:255.255.255.0) 255.255.255.0 255.255.255.0
255.255.255. |
|
| |
| 187926114361_567160007132 | Lawrence Daltron |
|
|
|
| |
| 144622634004_550060007574 | woger151 |
|
http tunneling?
Watch you squid logs.
Regards,
Steffen
I dont understand what you mean, please explain in less technical
words
Teddy L.
-------------------------------------------- |
|
| |
| 194522094570_538360007608 | lubasi |
|
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[ rel="nofollow" mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx ] On Beh |
|
| |
| 168326434456_537360007575 | Jasbir Khehra |
|
Hi
I have setup rules on my iptables and when i block yahoo,
only those using gaim IM client using yahoo are blocked but
the native yahoo IM client is passing through my firewall.
Whats w |
|
| |
| 115027374784_572060007601 | lee nookx |
|
|
|
| |
| 147722294212_583960007592 | Scott van Looy |
|
<citaat van="lee nookx"
Hi,
I am trying to find a way of transparently intercepting packets
flowing across my network, so that I can transform them for use in
another applicat |
|
| |
| 197123454856_597660007680 | Monty Ree |
|
|
|
| |
| 155027904889_512060007270 | Monty Ree |
|
|
|
| |
| 172828564914_518460007870 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 175923794606_554260007956 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 114325754184_535560007084 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 194823844429_580460007274 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 148329114063_537260007236 | Alan Ezust |
|
|
|
| |
| 164227584092_555660007320 | Alan Ezust |
|
|
|
| |
| 142527014700_503060007798 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 198723864373_517160007787 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 125526894171_568460007531 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
| 195929754441_502260007472 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
