On Wed, Feb 25, 2009 at 07:28:35PM -0500, Long Wind wrote:
> I want to specify a domain name in rules but the domain name often
> changes IP Is there anything I can do about it?
>
Cronjob, every four hours or so gets the current IP of the domain. Then,
in iptables, do something like
iptables -ar
Thanks to those who reply!
Gmail has changed! it combine many mails into one. I am confused. I am mad.
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
On Wednesday 25 February 2009 19:28:35 Long Wind wrote:
> I want to specify a domain name in rules
> but the domain name often changes IP
> Is there anything I can do about it?
Can you meet your need with tcpwrappers?
They work quite well with domain names, and if you're
trying to selectively a
On Wed, Feb 25, 2009 at 07:28:35PM -0500, Long Wind wrote:
> I want to specify a domain name in rules
> but the domain name often changes IP
> Is there anything I can do about it?
cron is your friend ?
>
>
> --
> To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
> with a subject of
I want to specify a domain name in rules
but the domain name often changes IP
Is there anything I can do about it?
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
On Fri, May 04, 2007 at 11:57:39AM +0200, Pierguido wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Pierguido wrote:
> [...]
> > difficult...is there a tool to show in realtime the status of the counter?
>
> Sorry...here the output of iptables-save
> # Generated by iptables-save v1.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Pierguido wrote:
[...]
> difficult...is there a tool to show in realtime the status of the counter?
Sorry...here the output of iptables-save
Pier
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Octavio Alvarez wrote:
> Check an iptables-save output to see if these rules are matched
> against a different interface than intented.
At the end i had to return to the configuration i had that
problemjust i remove dst from the physical interface
On Fri, 04 May 2007 00:45:06 -0700, Pierguido <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Karl E. Jorgensen wrote:
Strange: With this rule as the *first* rule in the OUTPUT chain,
*everything* outgoing should be accepted, regardless of source,
destination or protoc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Karl E. Jorgensen wrote:
> Strange: With this rule as the *first* rule in the OUTPUT chain,
> *everything* outgoing should be accepted, regardless of source,
> destination or protocol!?
>
>> out_lan0-- 192.168.30.103 0.0.0.0/0
On Thu, May 03, 2007 at 02:26:32PM +0200, Pierguido wrote:
> I'm using Etch a server and i want to configure bind.
> After i've done everything i set up firehol (iptables parser) and
> noticed that, when firehol is on, i cannot make any request to the
> outside dns server.
>
> I checked the firehol
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi all.
I'm using Etch a server and i want to configure bind.
After i've done everything i set up firehol (iptables parser) and
noticed that, when firehol is on, i cannot make any request to the
outside dns server.
I checked the firehol log and i see:
On Sat, May 18, 2002 at 01:02:28PM +1000, Nick Croft wrote:
> He also advises NOT enabling explicit congestion notification.
>
> [ ] IP: TCP Explicit Congestion Notification support
I'm not sure that this is a good idea; ECN is a standard people should
be using, then complaining to the owners b
Nick,
Can you please forward the URL for this tutorial? Or, if its a .tar on
your drive, would you mind sending it direct to me?
regards,
T.
On Sat, 18 May 2002 13:02:28 +1000
Nick Croft <[EMAIL PROTECTED]> wrote:
> Hi Norman,
>
> I've taken my advice from a tutorial by Daniel Robbins, publ
Hi Norman,
I've taken my advice from a tutorial by Daniel Robbins, published by
IBM.
He advises enabling the following under network options:
<*> Packet socket
[*] Network packet filtering (replaces ipchains)
<*> Unix domain sockets
[*] TCP/IP networking
[*] IP: advanced router
[*] I
On Wed, Feb 13, 2002 at 09:10:25PM -0500, Norman Walsh wrote:
> I'm trying to get iptables working with a recently built 2.4.17
> kernel. I think I enabled the correct options, but I get the following
> errors when I attempt to load the ip_tables module:
>
> /lib/modules/2.4.17/kernel/net/ipv4/net
I'm trying to get iptables working with a recently built 2.4.17 kernel. I think
I enabled the correct options, but I get the following errors when I attempt
to load the ip_tables module:
/lib/modules/2.4.17/kernel/net/ipv4/netfilter/ip_tables.o: unresolved symbol
nf_unregister_sockopt
/lib/module
17 matches
Mail list logo
