| 153921404609_596560007451 | Marco Nicoloso |
|
|
|
| |
| 102028964007_579560007976 | Pradeep Jindal |
|
|
|
| |
| 108928474379_595560007282 | Hal Moroff |
|
Hi all,
I installed the "conntrack" command line tool on a Debian Linux 4.0 (etch) with a default 2.6.17 kernel. When I tried to execute the test script I found in the SVN repository (/net |
|
| |
| 131027394702_509860007615 | FranxE7ois Barel |
|
Hi.
Google for portknocking ! It is a solution for opening ports "at run time"
by accessing some, already closed ports, and sending a specific packet type.
You can add/delete iptables rul |
|
| |
| 174527814439_519960007849 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 168020994990_528860007915 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 174020854811_574760007454 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 172329704300_510160007230 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 138422354970_508560007278 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 170020774058_513960007619 | gary douglas |
|
I am trying to patch a recent kernel (2.6.17) but connlimit seems to
no longer be in patch-o-matic-ng as of the snapshop 20061110.
Any assistance would be appreciated.
--
Your life is like a penny |
|
| |
| 198929574719_597860007784 | Pablo Neira Ayuso |
|
I am able to capture packets via QUEUE, but not ULOG.
Ive have these two rules:
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ULOG 0 -- anywh |
|
| |
| 189329854870_570360007750 | Mato Vidovic |
|
mael.boutin@xxxxxxxxxxx wrote:
You can change them via:
- /proc/sys/net/ipv4/netfilter/ip_conntrack_[tcp|udp]_*
- conntrack tool/libnetfilter_conntrack library
In fact i m tracking ipv6 |
|
| |
| 115624554720_545760007645 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 168729404880_565760007212 | Pascal Hambourg |
|
Hi,
I am not sure, but you are probably missing the extra module from
patch-o-matic-ng...
rel="nofollow" www.netfilter.org/projects/patch-o-matic/pom-extra.html#pom-extra-ROU www.netfilter.or |
|
| |
| 193527254290_599460007567 | Pablo Neira Ayuso |
|
Hi,
INL devel team is proud to announce the availability of pyctd, PYthon
Conntrack Daemon.
pyctd is a XML-RPC service for monitoring and altering Netfilter
connections tracking for network admins. |
|
| |
| 161328534523_533160007769 | Jasbir Khehra |
|
|
|
| |
| 111527224754_598660007485 | Taylor Grant |
|
Guys,
Im looking to see if an IPTables solution exists for NATing DNS
responses? I am already using multiple views within Bind to address this
and I would like to find a way to alter just the records |
|
| |
| 173625814941_545560007496 | Satvika Bejai |
|
|
|
| |
| 110027254436_598060007460 | Jasbir Khehra |
|
|
|
| |
| 119223164185_548260007049 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 104929234902_557360007732 | Satvika Bejai |
|
|
|
| |
| 134123694454_509460007879 | Bo Yang |
|
Ive just been introduced to netfilter. I would like to know if it is
possible to configure the firewall rules from a text file that is
written to by some script attached to a website. I am tryi |
|
| |
| 158020904460_552060007497 | Rob Sterenborg |
|
|
|
| |
| 101626464222_545260007604 | Rob Sterenborg |
|
I tried this. But whatever patch, i try to apply i get the message "n
missing files "(n=1,2,3 etc..) and patch fails. Is it possible to apply
only the random patch and skip others. Also w |
|
| |
| 191328184921_509760007230 | utteerna |
|
utteerna wrote:
I want to use the iptables "-m random" option.
download linux 2.6.18 & iptables 1.3.6,
it is called "statistic match".
|
|
| |
| 114623504152_504860007407 | utteerna |
|
utteerna wrote:
I tried the following
1) Took 2.6.18.2 kernel source - Compiled it with "statistic match"
option on
2) Then compiled iptables 1.3.6 and installed it
But sti |
|
| |
| 178022644777_523360007131 | utteerna |
|
utteerna wrote:
3)Downloaded patch-o-matic-ng-20061108.tar and put it in /usr/src dir
and untarred it
You dont need POM.
---QUESTION-- Do i have to compile them in to the kernel rather tha |
|
| |
| 111229394221_557260007768 | Ury Segal |
|
On Friday 10 November 2006 08:38, utteerna wrote:
Heres steps i followed and error details. Please let me know if i
missed something
Are you running Debian or a Debian derivative?
1)Downloa |
|
| |
| 106924754413_529160007038 | Justin Schoeman |
|
Hallo!
Ich suche nach einer Möglichkeit ein externes Programm bei einem match
einer Regel auszuführen. Beispiel:
iptables ... -j exec("/usr/bin/beep -f 5000 -l 1000")
------- |
|
| |
| 189628404857_581760007156 | Pablo Neira Ayuso |
|
On Tue, 07 Nov 2006 08:51:50 +0200, Justin wrote in message
<45502D05.1050807@xxxxxxxxxxxxxxx :
Erik Alberti wrote:
Hallo!
Ich suche nach einer Möglichkeit ein externes Progr |
|
| |
| 104620834506_519960007429 | willutellmemore will |
|
Every time I try to login to bugzilla, I get error messages from DBI
rel="nofollow" bugzilla.netfilter.org/bugzilla/query.cgi?GoAheadAndLogIn=1 bugzilla.netfilter.org/bugzilla/query.cgi?GoAhea |
|
| |
| 160629114693_538260007051 | Rob Sterenborg |
|
Hi:
My network is like this:
A(IP:192.168.0.2) B(IP: 192.168.0.1)(IP:192.168.1.2)
C(IP:192.168.1.1)
(netmask:255.255.255.0) 255.255.255.0 255.255.255.0
255.255.255. |
|
| |
| 151422564991_573660007449 | Lawrence Daltron |
|
|
|
| |
| 150328984925_591760007852 | woger151 |
|
http tunneling?
Watch you squid logs.
Regards,
Steffen
I dont understand what you mean, please explain in less technical
words
Teddy L.
-------------------------------------------- |
|
| |
| 195620844691_581260007628 | lubasi |
|
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[ rel="nofollow" mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx ] On Beh |
|
| |
| 196929484711_547560007843 | Jasbir Khehra |
|
Hi
I have setup rules on my iptables and when i block yahoo,
only those using gaim IM client using yahoo are blocked but
the native yahoo IM client is passing through my firewall.
Whats w |
|
| |
| 190427544754_559760007898 | lee nookx |
|
|
|
| |
| 164926504154_563960007983 | Scott van Looy |
|
<citaat van="lee nookx"
Hi,
I am trying to find a way of transparently intercepting packets
flowing across my network, so that I can transform them for use in
another applicat |
|
| |
| 108828894880_501260007068 | Monty Ree |
|
|
|
| |
| 186527614153_555660007054 | Monty Ree |
|
|
|
| |
| 118325424002_589560007150 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 173829214904_549160007039 | Alan Ezust |
|
Im trying to get conntrack -E to show me events, with conntrack IDs.
At the moment, the ctid is now showing up in the output unless there is an
[UNREPLIED] part to the line.
$ conntrack -E -i
connt |
|
| |
| 138921654689_554360007074 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 152628934963_540560007768 | Alan Ezust |
|
Alan Ezust wrote:
Is there a trick to getting the ctids to be sent to the output of this?
There is not.
conntrack -L -i seems to work, showing me the id. Personally, I think
conntrack shou |
|
| |
| 147427704529_562760007101 | Alan Ezust |
|
|
|
| |
| 168225094643_568460007660 | Alan Ezust |
|
|
|
| |
| 183421414580_573860007096 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 177720224262_546660007066 | Alan Ezust |
|
Alan Ezust wrote:
Thanks for the reply. Ok, I can see how I can generate some IDs, but I first
want to make sure i have all of the information I need.
When I run conntrack, I only see one p |
|
| |
| 154120914959_550460007864 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
| 127129714633_580060007958 | Eric Leblond |
|
Greetings,
I have an unusual (maybe?) request. I have several private IPs (192.168.x.x)
behind a Linux gateway. All are NATed to the Internet. Now I want to
explicitely map each private IP to a fi |
|
| |
