On Thu, 2003-08-07 at 07:11, Willem van der Walt wrote:
> I am not that sure mysellf, but you need to load two modules like this:
> modprobe ip_nat_ftp
> modprobe ip_conntrack_ftp
> and then ftp connections works correctly.
> Other members on this list is better qualified than me
> to tell you exac
On Thu, 2003-08-07 at 06:34, Sinon wrote:
> Thanks for the answer. I have added a further ipchains rule to allow
> incoming connections on port 20, but I have still no success. I don't
> know exactly what you mean with the ipcontract module though.
>
> Any more hints?
Not to be terse, but you'v
On Thu, 2003-08-07 at 08:10, Sinon wrote:
> Hi, how do you that I did'nt investigate myself? Actually getting any
> hints from some person here is my last hope... I did many searches in
> Google and visited n pages, and actually evey tutorial is telling me
> that my settings should be correct, but
Thanks anyway Willem - I really appreciated your help ;)SINON wrote you -> never delete this message ;-)_Get your FREE Budweiser E-mail account at http://budweiser.com Budweiser E-Mail must be used responsibly and only is for con
t: Re: IP CHAINS on Red
Hat Linux 7.1
Thanks anyway
Willem - I really appreciated your help ;)SINON wrote you
-> never delete this message
;-)_Get
your FREE Budweiser E-mail account at http://budweiser.com Budweiser E-Mail must
Hello all
I have setup an WWW, FTP, POP and SMTP server on an Red Hat Linux 7.1 Box. I have configured ipchains through the lokkit utility but it seems as not all rules do work...
Here are my rules defined in ipchains:
:input ACCEPT
:forward ACCEPT
:output ACCEPT
-A input -s 0/0 -d 0/
Thanks for the answer. I have added a further ipchains rule to allow incoming connections on port 20, but I have still no success. I don't know exactly what you mean with the ipcontract module though.
Any more hints?
Cheers,
PeterSINON wrote you -> never delete this message ;-)___
You can't accept a little criticism... However, since you didn't now the answer just back up. I don't want this to extend to a flaming spiral.
By the way, you should have read my posting better, than you would have understood what I was actually asking for.
You may answer again, but I won't.
I am not that sure mysellf, but you need to load two modules like this:
modprobe ip_nat_ftp
modprobe ip_conntrack_ftp
and then ftp connections works correctly.
Other members on this list is better qualified than me
to tell you exactly what these modules do.
hth
Willem
On 7 Aug 2003, Sinon wrote:
Hi, how do you that I did'nt investigate myself? Actually getting any hints from some person here is my last hope... I did many searches in Google and visited n pages, and actually evey tutorial is telling me that my settings should be correct, but they aren't. The FTP does work indeed, since I'm
Hi,
ftp use port 20 for the data transfer.
It looks like you have not opened that.
Port 21 is just for making the ftp connection.
I think you also need to call a module ipcontract to allow the ftp
connection
to be initiated and the data on another port to be seen as part of the
same established c
Hi Paul
Thanks for the answer. Actually I've found a solution to my problem, thanks to the answers received here, and I just added the following rule to my exsiting ipchains rules:
-A input -s 0/0 -d 0/0 1024:65535 -p tcp -y -j ACCEPT
I know this is a large range - it works for me since
Just wanted to say Thank You to everyone that responded to my questions.
Its working now, and you guys were a big help.
_
Get your FREE download of MSN Explorer at http://explorer.msn.com
__
On Sun, 11 Mar 2001, Chad Roberts wrote:
>
> Alright, i've come to an impasse concerning ip chains, and would be
> eternally grateful for any help i can get. In short, trying to use ip
> chains to set up a transparent proxy. here is my setup.
>
> cable modem
> 1 lin
Chad Roberts wrote
>
> Alright, i've come to an impasse concerning ip chains, and would be
> eternally grateful for any help i can get. In short, trying to use ip
> chains to set up a transparent proxy. here is my setup.
If I understand what you're wanting, I think the
Alright, i've come to an impasse concerning ip chains, and would be
eternally grateful for any help i can get. In short, trying to use ip
chains to set up a transparent proxy. here is my setup.
cable modem
1 linux box
1 windows machine
cable modem<--->linux<--->hub<--
Title: IP Chains Squid Transparent Proxy
Woes
I am having an unusual problem when trying to use IP Chains to
transparently redirect port 80 to the Squid Proxy Server. The
odd thing is that the IP Chain Command I used in the past did work and
now it doesn't. I moved directories onto an
I have two Linux boxes separated by the internet. I want to print
from LinuxA to the printer defined on LinuxB.
I've used printtool on LinuxA to add a definition of the remote printer
on LinuxB. I've created an /etc/hosts.lpd file on LinuxB that
contains the ip addresses and dns names of in
Robert Glover wrote:
>
> for script in /etc/rc.d/rc3.d/S*
> do
> $script # run that there script
> done
> # this is grossly oversimplified, truncated, and abbreviated, so
> please don't flame me :)
>
> Have a look at the script if you're wondering. It is started by
> /etc/inittab (again IIRC
On Tue, 6 Jun 2000, Alan Mead wrote:
> At 01:32 PM 6/6/00 , rpjday wrote:
> >On Tue, 6 Jun 2000, Anurag Jalan wrote:
> >
> > > Hi Alan,
> > >
> > > I'll try this first thing tomorrow morning ... but i can see the synbolic
> > > link in the directory listing ...
> > >
> > > i really hope -S does i
At 01:32 PM 6/6/00 , rpjday wrote:
>On Tue, 6 Jun 2000, Anurag Jalan wrote:
>
> > Hi Alan,
> >
> > I'll try this first thing tomorrow morning ... but i can see the synbolic
> > link in the directory listing ...
> >
> > i really hope -S does it ... running a Linux box was my idea, all my
> > collea
>
> On Tue, 6 Jun 2000, Anurag Jalan wrote:
>
> > Hi Alan,
> >
> > I'll try this first thing tomorrow morning ... but i can see the synbolic
> > link in the directory listing ...
> >
> > i really hope -S does it ... running a Linux box was my idea, all my
> > colleagues wanted NT ... i'd hate
On Tue, Jun 06, 2000 at 02:32:43PM -0400, rpjday thoughtfully expounded:
> On Tue, 6 Jun 2000, Anurag Jalan wrote:
>
> > Hi Alan,
> >
> > I'll try this first thing tomorrow morning ... but i can see the synbolic
> > link in the directory listing ...
> >
> > i really hope -S does it ... running
rpjday <[EMAIL PROTECTED]> wrote:
>> >>ln -s ../init.d/firewall s40ipchains
>> >
>> >I believe a capital 'S' is required.
>
>capital "S" refers to overriding the backup suffix. if you're just
>making a symbolic link, small "s" is the way to go. could the
>original poster provide the rationale
On Tue, 6 Jun 2000, Anurag Jalan wrote:
> Hi Alan,
>
> I'll try this first thing tomorrow morning ... but i can see the synbolic
> link in the directory listing ...
>
> i really hope -S does it ... running a Linux box was my idea, all my
> colleagues wanted NT ... i'd hate to end up looking si
Hi Alan,
I'll try this first thing tomorrow morning ... but i can see the synbolic
link in the directory listing ...
i really hope -S does it ... running a Linux box was my idea, all my
colleagues wanted NT ... i'd hate to end up looking silly :)
anurag
---
At 11:21 AM 6/6/00 -0500, you wrote
At 10:36 AM 6/6/00 , Anurag Jalan wrote:
>I have created a symbolic link to the firewall script in /etc/rc.d/rc3.d/
>using
>ln -s ../init.d/firewall s40ipchains
I believe a capital 'S' is required.
-Alan
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
Hi all,
On my Redhat 6.2 router box ..have just 1 ipchains rule :
ipchains -A forward -j MASQ -s 192.168.1.0/24 -d 0.0.0.0/0, which i have
saved to /etc/ipchains.rules using ipchains-save .
i have created a firewall script in /etc/rc.d/init.d/firewall with 755
permissions [ Exactly as mentioned
For what its worth, the site is an.au site, but I cannot remember the
URL offhand, yes, rusty appears to be an Aussie or at least has a domain
here :-)
*** REPLY SEPARATOR ***
On 30/04/00 at 23:50 Darryl Harvey wrote:
>Does anyone know what has happened to the IPchains ma
Try This
http://linux-firewall-tools.com/linux/firewall/index.html
It will help you create a custom script.
Eric
-Original Message-
From: Darryl Harvey [mailto:[EMAIL PROTECTED]]
Sent: Sunday, April 30, 2000 9:51 AM
To: [EMAIL PROTECTED]
Subject: IP chains List/web site??
Does
Does anyone know what has happened to the IPchains mailing list and web site?
I am getting no response from www.rustcorp.com for the web site and/or
[EMAIL PROTECTED] for the mailing list.
What gives???
Darryl
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
You know, I think the placement of this script is due to my having the
script in ip-up.local when I was using dialup from the house with a
dynamic ip. It is good to know that I can bring the interface up and
down without having to run the ipchains setup each time. I thought it
was kind of weird
I never gave a thought to a slow DHCP server :-( , anyways, maybe a nice
place to use "wait" if in fact there was a problem, from memory I have only
seen reference to rc.local, but I don't have to worry about ppp or DHCP
where chains are.
*** REPLY SEPARATOR ***
On 27/01/00 at
You can setup ipchains *before* the interface is up if you have a fixed
IP. I believe this would indeed be preferred. However if you have a
dynamic external IP, and your script figures that out before setting it's
rules, then you obviously need to run it after the interface is up, but as
soon as p
On Wed, 26 Jan 2000, Chad W. Skinner wrote:
> I have created a script to add 2 ips to interface eth0. This script simply
> contains the commands
>
> ifconfig eth0:0 192.168.0.2 netmask 255.255.255.0
> ifconfig eth0:0 192.168.0.3 netmask 255.255.255.0
>
> When I reboot my machine i simply run th
lieve I need to
add
>> >these to rc.local, but is there a standard way of doing this so it
works
>> >properly or reports errors. For example, what if something goes wrong
and
>> >eth0 is not up when the above commands are issued?
>> >
>> >Also, what scri
hat if something goes wrong and
> >eth0 is not up when the above commands are issued?
> >
> >Also, what scripts bring up the initial interfaces? and where should the
> >commands for IP chains be placed so they run at startup?
> >
> >Thanks,
> &g
>properly or reports errors. For example, what if something goes wrong and
>eth0 is not up when the above commands are issued?
>
>Also, what scripts bring up the initial interfaces? and where should the
>commands for IP chains be placed so they run at startup?
>
>Thanks,
&
interfaces? and where should the
commands for IP chains be placed so they run at startup?
Thanks,
Chad W. Skinner
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
Hello,
I'm using a firewall created by the tool at:
http://rlz.ne.mediaone.net/linux/firewall/index.html
I want to allow quake through masqurading.
The firewall deny's just about anything, so what i can't to figure out what
i need to open up to play quake. I do load the module and i ope
40 matches
Mail list logo
