| 155223144099_571060007295 | Jay Levitt |
|
On Sunday 11 April 2004 4:56 pm, __ Radien__ wrote:
No. TCPwrappers is a response mechanism to see where a connection came
from, not a gateway in the middle of a connection between two mach |
|
| |
| 196728104051_587760007891 | Alistair Tonner |
|
On Sun, 2004-04-11 at 01:38, Jay Levitt wrote:
Im occasionally seeing lines like the following, always to the same
machine which is on my internal network:
Apr 11 01:11:52 linux kernel: Rej |
|
| |
| 132324984773_597360007648 | Alistair Tonner |
|
On Sun, 2004-04-11 at 01:38, Jay Levitt wrote:
Im occasionally seeing lines like the following, always to the same
machine which is on my internal network:
Apr 11 01:11:52 linux kernel: Rej |
|
| |
| 118622914229_526260007914 | Antony Stone |
|
hi
im not sure if this is the right list to ask this, dont be too harsh one me :~
this is my ipv6 routing table
# route -A inet6 -n
Kernel IPv6 routing table
Destination |
|
| |
| 137829844273_559160007156 | Antony Stone |
|
hi
im not sure if this is the right list to ask this, dont be too harsh one me :~
this is my ipv6 routing table
# route -A inet6 -n
Kernel IPv6 routing table
Destination |
|
| |
| 108720674470_518660007852 | Antony Stone |
|
On Sun, 2004-04-11 at 02:54, Antony Stone wrote:
Can anyone think how I can see the content of packets from a browser running
on my machine, which is posting a form back to a remote server some |
|
| |
| 148127444662_553360007271 | Antony Stone |
|
On Sun, 2004-04-11 at 02:54, Antony Stone wrote:
Can anyone think how I can see the content of packets from a browser running
on my machine, which is posting a form back to a remote server some |
|
| |
| 142329444770_519660007295 | Antony Stone |
|
On Sun, Apr 11, 2004 at 01:54:39AM +0100, Antony Stone wrote:
I want to pick up a packet stream, but for an HTTPS connection, and using a
standard packet sniffer like ethereal just gives me t |
|
| |
| 184421024586_507360007378 | Antony Stone |
|
On Sun, Apr 11, 2004 at 01:54:39AM +0100, Antony Stone wrote:
I want to pick up a packet stream, but for an HTTPS connection, and using a
standard packet sniffer like ethereal just gives me t |
|
| |
| 198827434362_526060007878 | Anupam |
|
On Sat, 2004-04-10 at 20:54, Antony Stone wrote:
Hi people.
This is not strictly a netfilter question, but Im wondering if maybe someone
can help or make a suggestion?
I want to pick u |
|
| |
| 141724214946_588860007723 | Anupam |
|
On Sat, 2004-04-10 at 20:54, Antony Stone wrote:
Hi people.
This is not strictly a netfilter question, but Im wondering if maybe someone
can help or make a suggestion?
I want to pick u |
|
| |
| 173920894466_540060007086 | Philipp Stader |
|
|
|
| |
| 167220454029_544160007946 | Syed Faisal Gillani |
|
Philipp Stader wrote:
|
|
| |
| 173620854048_532260007413 | Nick Pasich |
|
On Sun, 11 Apr 2004, Syed Faisal Gillani wrote:
i am a newbie learning iptables ...
can u tell me the rule of blocking only ping on my nic ?
Hi,
try this:
iptables -A INPUT -p icmp --icmp-typ |
|
| |
| 170021454155_506260007490 | Frederic de Villamil |
|
is it possible in iptables to FW a port traffic (eg 80) to an internal =
ipaddress of a webserver ?
Syed Faisal Gillani
ClickOnline Networks
clickonlinenetworks.com clickonlinenetworks.com
E |
|
| |
| 194028234912_588560007519 | Jee JZ |
|
is it possible in iptables to FW a port traffic (eg 80) to an internal =
ipaddress of a webserver ?
Syed Faisal Gillani
ClickOnline Networks
clickonlinenetworks.com clickonlinenetworks.com
|
|
| |
| 160824494608_507360007229 | Jee JZ |
|
On Saturday 10 April 2004 7:54 pm, Jee J.Z. wrote:
Dear all,
I am trying to setup three PCs and do some simple filter+nat jobs. The
situation is specified below:
1.PC1 has one NIC with a |
|
| |
| 116025204275_519060007516 | Jee JZ |
|
On Sunday 11 April 2004 12:33 am, Jee J.Z. wrote:
Hi Antony,
Thanks for getting the spelling right - lots of people round here dont :)
Look at the routing table of each machine the packets a |
|
| |
| 113526974601_518360007760 | Jee JZ |
|
On Sunday 11 April 2004 3:00 am, Jee J.Z. wrote:
Heres what I think is going on:
PC1 has a simple routing table saying "network 144.32.xxx.0/23 is on
eth0, and the deafult gatew |
|
| |
| 159727194905_575360007311 | Antony Stone |
|
|
|
| |
| 124227214134_515360007845 | Chris Brenton |
|
It happens on many servers, not just sourceforge - in fact, I get it on the
netfilter server as well. And its only sometimes for any given server, not
all the time...
Ill try turning on sendmail lo |
|
| |
| 167222134294_528060007142 | Ranjeet Shetye |
|
Chris Brenton wrote:
On Sat, 2004-04-10 at 14:33, Jay Levitt wrote:
sourceforge: [SYN]
me: [SYN, ACK]
sourceforge: [ACK]
[SMTP conversation ensues, switches to TLS, sends me an |
|
| |
| 151024474663_578560007624 | Antony Stone |
|
Hi all,
some of you can give me some input about the best way to set up a vpn
under two Linux RH9 systems?
I heared there are different solution (PPP and SSH, PPTP...) and Id
like to know your opin |
|
| |
| 130027734321_590260007340 | Antony Stone |
|
Antony Stone wrote:
|
|
| |
| 166125534058_556660007840 | Antony Stone |
|
Hi,
I forget one things, waht about the CIPE solution. I read that in the
rh9 sec guide about VPN.
And then, I see this news: the FreeS/WAN project is no longer in
active development, it could b |
|
| |
| 187825474560_501160007165 | Alexander Samad |
|
Ok, I see.
Well, thank you very much for giving me such information and for being
so exhaustive.
regards
Gianni
Antony Stone wrote:
|
|
| |
| 185723734378_515060007665 | Scott MacKay |
|
---snip----
Development has moved to openswan
I believe openvpm is another good choice for ipsec vpn solution
Regards,
Antony.
--
The difference between theo |
|
| |
| 129321624111_595760007748 | Dick StPeters |
|
Im afraid I dont have time to answer in depth today but here are a few
quick answers regarding *swan:
On Mon, 2004-04-12 at 08:25, Scott MacKay wrote:
I had a couple questions about the different |
|
| |
| 158022474520_590260007476 | John A Sullivan III |
|
On Saturday 10 April 2004 11:18, Antony Stone wrote:
PPP is Point-to-Point Protocol, and has almost nothing to do with VPNs :)
SSH is Secure Shell, and at least it contains some encryption, but |
|
| |
| 124128104029_530060007334 | Dimitris Kounalakis |
|
lør, 10.04.2004 kl. 14.30 skrev John A. Sullivan III:
[...]
The closest solution we could find to rival the commercial offerings on
such a large scale is netfilter + freeS/WAN + iproute2 + |
|
| |
| 113922534882_570060007582 | azeem ahmad |
|
On Friday 09 April 2004 12:56 pm, Dimitris Kounalakis wrote:
Hello,
I need a special case and I am not sure it can exist with NAT (SNAT or
DNAT)
I have two lan networks with IP range : 1 |
|
| |
| 186521214955_524360007608 | Jeffrey Laramie |
|
On Friday 09 April 2004 11:07 pm, azeem ahmad wrote:
hi alll
i want to check the logs of iptables to check who is passing throught my
machine. so plz tell me where r its logs and how can i che |
|
| |
| 190825644770_501960007718 | Antony Stone |
|
Dear friends,
As I am getting more confused about VPN masq., request your help on
this.
My local LAN is 10.35.0.0/24
My Linux box running red hat linux 9.0 with kernel 2.4.20-8. acting as the
gat |
|
| |
| 176721004965_528760007114 | Luke Deryckx |
|
yes, you need the pptp patch
ive been in the same situation, and applying the patch made it work just
fine.-
see
www.netfilter.org/documentation/HOWTO//netfilter-extensions-HOWTO-5.html#ss5.6 |
|
| |
| 176422434924_579360007299 | Manikandan |
|
When I try to apply the patch, using netfilter CVS I am getting an error
like
Do you want to apply this patch [N/y/t/f/a/r/b/w/q/?] y
Testing patch submitted/03_2.4.21.patch...
Failed to patch copy |
|
| |
| 112726834553_500860007817 | azeem ahmad |
|
On Friday 09 April 2004 12:56 pm, Dimitris Kounalakis wrote:
Hello,
I need a special case and I am not sure it can exist with NAT (SNAT or
DNAT)
I have two lan networks with IP range : 1 |
|
| |
| 159022474938_554560007209 | Dave Barnum |
|
On Sunday 25 April 2004 2:11 pm, Manikandan wrote:
Somehow I managed to patch my kernel with pptp patch. But everytime when I
load modules like ip_conntrack_pptp, ip_nat_pptp, I am getting an er |
|
| |
| 115223984774_592360007293 | Jeffrey Laramie |
|
On Friday 09 April 2004 11:07 pm, azeem ahmad wrote:
hi alll
i want to check the logs of iptables to check who is passing throught my
machine. so plz tell me where r its logs and how can i che |
|
| |
| 164021844394_560560007396 | Manikandan |
|
Hi,
Is there a patch for the IPSec masquerading for kernel 2.4.x. Basically,
I need to allow multiple clients in a private lan access the (IPSec) VPN
server through the internet.
I hit upon this link |
|
| |
| 171922354640_564360007183 | Antony Stone |
|
Dear friends,
As I am getting more confused about VPN masq., request your help on
this.
My local LAN is 10.35.0.0/24
My Linux box running red hat linux 9.0 with kernel 2.4.20-8. acting as the
gat |
|
| |
| 194321554866_549560007248 | Luke Deryckx |
|
On Saturday 10 April 2004 6:18 am, Manikandan wrote:
When I try to apply the patch, using netfilter CVS I am getting an error
like
Do you want to apply this patch [N/y/t/f/a/r/b/w/q/?] y
T |
|
| |
| 131227544495_525060007986 | Luke Deryckx |
|
yes, you need the pptp patch
ive been in the same situation, and applying the patch made it work just
fine.-
see
www.netfilter.org/documentation/HOWTO//netfilter-extensions-HOWTO-5.html#ss5.6 |
|
| |
| 145924504383_523260007800 | Antony Stone |
|
|
|
| |
| 152620114984_592160007455 | Manikandan |
|
When I try to apply the patch, using netfilter CVS I am getting an error
like
Do you want to apply this patch [N/y/t/f/a/r/b/w/q/?] y
Testing patch submitted/03_2.4.21.patch...
Failed to patch copy |
|
| |
| 131623354691_595660007719 | Antony Stone |
|
No, not using netfilter (unless you wanted to create a rule for each
possible
destination, just in case some packets got sent there (but then youd want
to
know what protocol was used, too, so |
|
| |
| 113929214874_500460007037 | Dave Barnum |
|
On Sunday 25 April 2004 2:11 pm, Manikandan wrote:
Somehow I managed to patch my kernel with pptp patch. But everytime when I
load modules like ip_conntrack_pptp, ip_nat_pptp, I am getting an er |
|
| |
| 125327284791_574960007088 | Donovan J Edye |
|
okay ... i decided to try them both ( the rule you posted and snort) to see
... ( one at a time :-) )
i just installed snort but i am stuck in the manual right now ... if it
happens to have a snort c |
|
| |
| 173524374539_511760007912 | Manikandan |
|
Hi,
Is there a patch for the IPSec masquerading for kernel 2.4.x. Basically,
I need to allow multiple clients in a private lan access the (IPSec) VPN
server through the internet.
I hit upon this link |
|
| |
| 191821954924_590260007540 | Roeland Moors |
|
I have the following setup: CAPS = Device / Machine
- ROUTER: WAN Address: xxxxxxxxx LAN Address: 192.168.40.1
- IPTABLES: 1 LAN Interface 192.168.40.5 (Gateway: 192.168.40.1)
- PROXY: 1 LA |
|
| |
| 135724324875_504760007853 | Luke Deryckx |
|
On Saturday 10 April 2004 6:18 am, Manikandan wrote:
When I try to apply the patch, using netfilter CVS I am getting an error
like
Do you want to apply this patch [N/y/t/f/a/r/b/w/q/?] y
T |
|
| |
