Andy Smith writes:
> Ansible can be very simple and quick to learn and everything you've
> mentioned in your post can easily be done with it.
Thanks, I'd heard of Ansible before and I tried it and cdist and decided
to do this with Ansible. Mostly because I couldn't get anywhere with
cdist.
Ansi
john doe writes:
> You could have one common file that includes a custum file (1).
> You would have one custum file per host (custum-cups, custum-smb ...).
Right, thanks. I missed the whole include ability in nftables.
Hello,
On Sat, Jun 12, 2021 at 07:02:50PM +0300, Anssi Saari wrote:
> But then... One machine has a radius server that needs UDP port 1812
> open. And another is a print server with CUPS and SMB which apparently
> need at least TCP ports 631 and 137 open.
It sounds like you need configuration man
I can make changes to the
"main" firewall and merge those changes to the slightly tweaked
branches. Or possibly also some preprocessor type of thing that
generates three versions of the firewall script. Or just generate the
whole nft scripts with the small variants. Just wondering what o
s interesting and simple, does
> anyone have experience with it?
I have been somewhere there 20y ago. There was one tool cfengine then came
many of the kind puppet, ansible etc.
regarding the FW I have also had a "simple" firewall script, but few years
ago I moved to shorewall
In
t; firewall and merge those changes to the slightly tweaked
branches. Or possibly also some preprocessor type of thing that
generates three versions of the firewall script. Or just generate the
whole nft scripts with the small variants. Just wondering what other
people are doing with this sort of thin
On 20/10/17 15:21, Richard Hector wrote:
I wasn't aware of or familiar with the idea of putting it somewhere else
and enabling/disabling it; I'm not sure if I need that.
I just did it for convenient selective backup together with the rules
files, and consistency with other services which use s
On 18/10/17 01:25, Ben Caradoc-Davies wrote:
> On 18/10/17 01:08, Stephane L wrote:
>> Hi,I have a firewall script(firewall) that I laucnh with > start>Is there a way in debian 9 (with kde5 and sddm) to start this
>> script at the boot of the linux system or at the launching
On Wed, 2017-10-18 at 01:25 +1300, Ben Caradoc-Davies wrote:
> On 18/10/17 01:08, Stephane L wrote:
> > Hi,I have a firewall script(firewall) that I laucnh with > start>Is there a way in debian 9 (with kde5 and sddm) to start this
> > script at the boot of the linux system o
thank you very much ben, I will try this toobests regards
stephane
Le Mardi 17 octobre 2017 14h26, Ben Caradoc-Davies a
écrit :
On 18/10/17 01:08, Stephane L wrote:
> Hi,I have a firewall script(firewall) that I laucnh with Is
> there a way in debian 9 (with kde5 and sddm) to
On 18/10/17 01:08, Stephane L wrote:
Hi,I have a firewall script(firewall) that I laucnh with Is
there a way in debian 9 (with kde5 and sddm) to start this script at the boot of the
linux system or at the launching of xorg or of kde5 ?
systemd units are easy to write (this is the main
Hi,I have a firewall script(firewall) that I laucnh with Is
there a way in debian 9 (with kde5 and sddm) to start this script at the boot
of the linux system or at the launching of xorg or of kde5 ?
Thanks
Sorry, I don't have lenny
>
> Have you tried lenny?
> Supposing you can only see part of the webpage, have you captured the data
> from your network card to make sure all the data has been discarded?
>
> BTW, backup the old policy rules before you drop them may be a good idea.
>
--
To UNSUBSCRI
Long Wind 写道:
I have a firewall script
It provides NAT and allow clients to visit only 3 sites plus DNS servers
On client machine the 1st site (www.debian.org) can be viewed.
but other two sites have problems
the browser display only title bar
in other words it is displayed partially
Note the
I have a firewall script
It provides NAT and allow clients to visit only 3 sites plus DNS servers
On client machine the 1st site (www.debian.org) can be viewed.
but other two sites have problems
the browser display only title bar
in other words it is displayed partially
Note the other two sites
have to put in my firewall script for
this line to appear.. (clear?!?!.. hope so!)
Thanks in advance!
Marcelo Lafaille
Jerome BENOIT wrote:
Hello List,
I am currently trying to configure an ambedded linux box (openwrt):
I would like to generate a script on my main (Debian/Sarge) box
for the tiny box (so tiny that bash cannot be installed,
so unfortunately I cannot install FireHOL).
Any idea ?
Thanks in advance,
Jer
Hello List,
I am currently trying to configure an ambedded linux box (openwrt):
I would like to generate a script on my main (Debian/Sarge) box
for the tiny box (so tiny that bash cannot be installed,
so unfortunately I cannot install FireHOL).
Any idea ?
Thanks in advance,
Jerome
--
To UNSUBSCRIBE
t.d/network and it didn't
come up with something. Try this also and if the result is negative i
would remove it (after making a backup somewhere to be sure).
> 2) Where would you put a hand-made firewall script ?
> Is there a 'default'
> location ?
I've put
content was.
Can I get rid of it now ? Is /etc/init.d/networking enough ? (Both
scripts are called in /etc/init.d/rcX.d/) What else must I check ?
2) Where would you put a hand-made firewall script ? Is there a 'default'
location ?
Thanks for answers and advices.
--
Christoph
doing a nmap scan of yourself and build the firewall
script accordingly(from scratch). what i do:
nmap -sS -P0 -p 1-65535 YOUR_REAL_IP_HERE
nmap -sU -P0 -p 1-65535 YOUR_REAL_IP_HERE
nate
Hi,
I was wondering about this.
I had a firewall script generated at the firewall site.
http://home.hetnet.nl/~wsa30/rc.firewall
there's my script.
From a different ISP i ran a portscanner and i found the following
ports open
21 (normal cause this one is allowed)
389 LDAP
1002
1720 h323hos
Cliff Sarginson([EMAIL PROTECTED]) is reported to have said:
> >
> > Cliff
> >This might be what you are looking for
> >
> > $IPTABLES -A INPUT -i $IEXT -p tcp --dport 515 -j LOG --log-level NOTICE
> > --log-prefix "Printer-Attack-Rejected:"
> > $IPTABLES -A INPUT -i $IEXT -p tcp --dport 515
On Wed, Aug 29, 2001 at 12:00:00AM -0400, Wayne Topa wrote:
>
> Subject: Re: who has *arguably* the best iptables firewall script
> around here?
> Date: Tue, Aug 28, 2001 at 11:55:19PM +0200
>
> In reply to:Cliff Sarginson
>
> Quoting Cliff Sarginson([EMAIL
Subject: Re: who has *arguably* the best iptables firewall script
around here?
Date: Tue, Aug 28, 2001 at 11:55:19PM +0200
In reply to:Cliff Sarginson
Quoting Cliff Sarginson([EMAIL PROTECTED]):
> On Tue, Aug 28, 2001 at 10:42:39PM +0200, thomas anderson wrote:
> &
s your firewall script doesn't really
matter if you have no idea how it actually works.
Each firewall script is unique and may serve different purposes. For
example, my script is designed for a machine that's sharing a cable modem
connection with other boxes on a private LAN (with bogus IP ad
On Tue, Aug 28, 2001 at 10:42:39PM +0200, thomas anderson wrote:
> Hello,
>
> If you think you do please tell us why and also kindly send me a copy too!
> :)
>
Well, mine seems ok, I do not run inetd when connected, which does
not really lose me that much in pratcise. Nexus's only complaint
abou
Hello,
If you think you do please tell us why and also kindly send me a copy too!
:)
--
Sent through GMX FreeMail - http://www.gmx.net
Thanks,
Looks very easy.
Quoting ktb ([EMAIL PROTECTED]):
> Paulo Henrique Baptista de Oliveira wrote:
> >
> > Hi all Debian users,
> > anyone has a firewall script that can send me.
> > I already know ipchains well b
Message from To debian-user@lists.debian.org at 04/07/00 04:50:21AM:
> Hi all Debian users,
> anyone has a firewall script that can send me.
> I already know ipchains well but with a script (commented) it will
> better. :)
> Thanks, Pau
Hi Paulo,
Quoth Paulo Henrique Baptista de Oliveira,
> anyone has a firewall script that can send me.
> I already know ipchains well but with a script (commented) it will
> better. :)
I use one called gShield, which is very easy to use and has a nice
configuration
Paulo Henrique Baptista de Oliveira wrote:
>
> Hi all Debian users,
> anyone has a firewall script that can send me.
> I already know ipchains well but with a script (commented) it will
> better. :)
> Thanks, Paulo Henriq
Hi all Debian users,
anyone has a firewall script that can send me.
I already know ipchains well but with a script (commented) it will
better. :)
Thanks, Paulo Henrique
33 matches
Mail list logo
