On Wed, 17 Sep 2003, Mike Burger wrote:
> You need to use iptables.
Iptables is now the default, but it looks like ipchains is still included.
You would need to install the ipchains RPM and turn off or uninstall
iptables--only one or the other can run at a time. And don't count on the
Yes, iptables is way more versatile than ipchains, and ipchains
is no longer supported in the redhat kernel by default.
As far as i know, with iptables you can filter packets based
on IP flag combination (a great feature), can limit the amount
of packets received to prevent log file flooding
You need to use iptables.
On Wed, 17 Sep 2003, Reuben D. Budiardja wrote:
>
> Hello,
> I am trying to run some ipchains command for NAT-ing with RH 9, which acts as
> a master node for a beowulf cluster.
>
> When running ipchainsI got the message "Protocol not availa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 17 Sep 2003 17:25:15 -0400, Reuben D. Budiardja wrote:
> I am trying to run some ipchains command for NAT-ing with RH 9, which acts as
> a master node for a beowulf cluster.
>
> When running ipchainsI got the message "Proto
Hi
>-Original Message-
>From: Reuben D. Budiardja [mailto:[EMAIL PROTECTED]
>Sent: Wednesday, September 17, 2003 5:25 PM
>To: [EMAIL PROTECTED]
>Subject: IPChains with RH 9? "Protocol not available"
>
>
>[EMAIL PROTECTED] kernel]# insmod ipchains
>U
Hello,
I am trying to run some ipchains command for NAT-ing with RH 9, which acts as
a master node for a beowulf cluster.
When running ipchainsI got the message "Protocol not available". This led me
to thinking (and after some googling) that probably the correct kernel module
is
Hi Rudik,
On Tue, 27 May 2003, Rudik Amirjanyan wrote:
> As far as ipchains is large concept, and I am tired learning it, so I
> decided to ask you for help.
Are you in fact useing ipchains and not iptables ?
if you have iptables that's a better option to use.
Do you have a s
Rudik Amirjanyan wrote:
Hello List,
As far as ipchains is large concept, and I am tired learning it, so I
decided to ask you for help.
You don't want to spend the time to learn it yourself, even to the
minimal point of being able to submit sample rules to us to comment on ...
I submit tha
Hi Nate,
On Tue, 27 May 2003, nate wrote:
> redhat 7.x uses linux 2.4.x doesn't it ? if so you'll probably want
7.1 onwards use 2.4.x, 7.0 used the 2.2.x kernel
>
--
Res
-
Network Solutions: clueless f'wits who dont care whos business they
damage through their incompetance, which is only thi
Rudik Amirjanyan said:
> Hello List,
>
> As far as ipchains is large concept, and I am tired learning it, so I
> decided to ask you for help.
>
> On my RH7.1 server I want to open some necessary ports (21, 22, 25, 53,
redhat 7.x uses linux 2.4.x doesn't it ? if so you&#
Hello List,
As far as ipchains is large concept, and I am tired learning it, so I
decided to ask you for help.
On my RH7.1 server I want to open some necessary ports (21, 22, 25, 53,
80, 110 etc) and close all other ports.
I want give permission only for mail, ftp, ssh, pop, http, dns.
I woul
[EMAIL PROTECTED] wrote:
> "Burke, Thomas G." wrote:
>
>
>>-BEGIN PGP SIGNED MESSAGE-
>>Hash: SHA1
>>
>>Check out http://tomii.dnsalias.com/firewall.txt for a well
>>documented ipchains script
>
>
> So, any other
en, the Internet users they can only to use the port numbers (
> > services ) : 80 ( Web ) and 53 ( DNS )...
> >
> > On Linux Redhat 6.x Server, we can only to use "ipchains-rules"
> > function :
>
> You cannot compare iptables and ipchains easily, because in
"Burke, Thomas G." wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Check out http://tomii.dnsalias.com/firewall.txt for a well
> documented ipchains script
So, any other well documented iptables script ?
Thank for your help !
--
redhat-list mailin
Hong Tian wrote:
I am working with a NFS server on Red Hat 7.3. For secure reason I want to
use IPCHAINS to restrict TCP/UDP ports. Now the question is that how many
ports should be opened for a NFS server? only port 111, port 635, and port
2049?
I recommend this strategy:
Allow access to the
Hong Tian said:
> Hi,
>
> I am working with a NFS server on Red Hat 7.3. For secure reason I want to
> use IPCHAINS to restrict TCP/UDP ports. Now the question is that how many
> ports should be opened for a NFS server? only port 111, port 635, and port
> 2049?
> Thanks for yo
Hi,
I am working with a NFS server on Red Hat 7.3. For secure reason I want to
use IPCHAINS to restrict TCP/UDP ports. Now the question is that how many
ports should be opened for a NFS server? only port 111, port 635, and port
2049?
Thanks for your help.
--
redhat-list mailing list
On Wed, 2003-04-02 at 06:12, Mingle, Michael wrote:
> What procedure should I use to get ipchains back?
What's wrong with iptables? There are several iptables-based firewall
packages you can get to make this easier. I use shorewall:
http://www.shorewall.net
--
Cliff Wells, Software
On Wed, Apr 02, 2003 at 05:50:45AM -0800, Mingle, Michael wrote:
> I have noticed in Redhat 8 that ipchains is not longer available. This is a
> problem for me because i have some elaborate scripts that I wrote about a
> year ago that use ipchains exclusively. I have heard that the
chkconfig iptables off
service iptables stop
run your customized script.
-Steve
-Original Message-
From: Mingle, Michael [mailto:[EMAIL PROTECTED]
Sent: Wednesday, April 02, 2003 8:12 AM
To: '[EMAIL PROTECTED]'
Subject: RE: I want my ipchains back
What procedure should I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 2 Apr 2003 06:12:16 -0800, Mingle, Michael wrote:
> What procedure should I use to get ipchains back?
Make sure you have the "ipchains" package installed. You find it on
disc #3. Verify that service "iptables"
On Wed, 2 Apr 2003, Mingle, Michael wrote:
> What procedure should I use to get ipchains back?
there's a very good iptables tutorial at www.frozentux.net,
which shows how to move from ipchains to iptables. just
do the reverse, which involves removing the iptables
modules and run
What procedure should I use to get ipchains back?
Michael
> -Original Message-
> From: Robert P. J. Day [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, April 02, 2003 9:00 AM
> To: Redhat-List (E-mail)
> Subject: Re: I want my ipchains back
>
>
> On Wed, 2 Apr 200
On Wed, 2 Apr 2003, Mingle, Michael wrote:
> I have noticed in Redhat 8 that ipchains is not longer available. This is a
> problem for me because i have some elaborate scripts that I wrote about a
> year ago that use ipchains exclusively. I have heard that the stateful
> environment
I have noticed in Redhat 8 that ipchains is not longer available. This is a
problem for me because i have some elaborate scripts that I wrote about a
year ago that use ipchains exclusively. I have heard that the stateful
environment provided by iptables and netfilter are better; however, I would
Hi, I setup a RedHat firewall script, not sure how good it is. I suppose that others
might find it useful... have a look and see what you think.
http://members.optusnet.com.au/~csherlock/rc.firewall
Just alter the internal and external variables. I no longer run an ipchains machine
and I&#x
On Tue, 18 Mar 2003 [EMAIL PROTECTED] wrote:
> Dear All,
>
> How to setup NAT with ipchains on 6.2 machine ?
> Any sample can you send it to me for reference ?
>
> Thank for your help !
>
> Edward.
For installation cookbook, configuration cookbook, configuration
> Dear All,
>
> How to setup NAT with ipchains on 6.2 machine ?
> Any sample can you send it to me for reference ?
http://www.tldp.org/HOWTO/IPCHAINS-HOWTO.html
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
Ran 6.2 for ages with NAT/ipchains using Godot's gShield. Save yourself
alot of time and headaches and get it here:
http://muse.linuxmafia.org/
Be sure and get the older version for ipchains. It works. It's simply a
config file that basically puts your rulesets into plain english.
Dear All,
How to setup NAT with ipchains on 6.2 machine ?
Any sample can you send it to me for reference ?
Thank for your help !
Edward.
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
[EMAIL PROTECTED] wrote:
Sorry...
Is there a documentation ( NOT shell script ) about "ipchains-rule" ?
I'm very hard to test the following rules with the old machine ( rh 6.x
man ipchains
http://www.tldp.org/HOWTO/IPCHAINS-HOWTO.html
Tony
--
Anthony E. Greene <mailto:[EMAIL P
Sorry...
Is there a documentation ( NOT shell script ) about "ipchains-rule" ?
I'm very hard to test the following rules with the old machine ( rh 6.x
)...
Thank for your help !
"Burke, Thomas G." wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>
o: [EMAIL PROTECTED]
Subject: Re: Firewall "ipchains-rule" questions
Hello,
Now, we want to allow users they can only to use the following port
numbers
( services ), but we may need someone to help to check and modify the
"rules"...
ipchains -F
ipchains -A input -i eth0 -p tcp --
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thu, 13 Mar 2003 14:26:15 +0800, [EMAIL PROTECTED] wrote:
> Now, we want to allow users they can only to use the following port numbers
> ( services ), but we may need someone to help to check and modify the
> "rules".
Hello,
Now, we want to allow users they can only to use the following port numbers
( services ), but we may need someone to help to check and modify the
"rules"...
ipchains -F
ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
ipchains -A input -i eth0 -p tcp --dport 21 -j ACCEPT
i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thu, 13 Mar 2003 00:32:20 +0800, [EMAIL PROTECTED] wrote:
> Now, I reset the "ipchains-rule" on Redhat 6.2 machine, so any problem
> about the following setting ?
It depends on the purpose of your host and the goal of your rules:
Hello,
Now, I reset the "ipchains-rule" on Redhat 6.2 machine, so any problem
about the following setting ?
ipchains -F
ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
ipchains -A input -i eth0 -p tcp --dport 21 -j ACCEPT
ipchains -A input -i eth0 -p tcp --dport 22 -j ACCEPT
i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 12 Mar 2003 09:44:12 +0800, [EMAIL PROTECTED] wrote:
> So, is there any sample about "ipchains-rule" ?
Search Google for "ipchains howto" and "ipchains tutorial"
and thinks like that. Additionally, as
Michael Schwendt wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Wed, 12 Mar 2003 00:09:31 +0800, [EMAIL PROTECTED] wrote:
>
> > > ipchains --policy input DENY
> > > ipchains --policy output DENY
> > > ## Allow outgoing traffic from
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 12 Mar 2003 00:09:31 +0800, [EMAIL PROTECTED] wrote:
> > ipchains --policy input DENY
> > ipchains --policy output DENY
> > ## Allow outgoing traffic from your HTTP/DNS server.
> > ipchains -A output -i e
On Tue, Mar 11, 2003 at 09:08:05AM -0800, Gordon Messmer wrote:
> [EMAIL PROTECTED] wrote:
> > Hello to you,
> >
> > After the following "iptables-rules" on Linux Redhat 7.2 Server :
>
> I think your rules are out of order. You've got rules to drop
> everything at the
> beginning of the chain, s
[EMAIL PROTECTED] wrote:
> Hello to you,
>
> After the following "iptables-rules" on Linux Redhat 7.2 Server :
I think your rules are out of order. You've got rules to drop
everything at the
beginning of the chain, so packets never make it far enough in to match
the "allow" rules. Re-order like
en, the Internet users they can only to use the port numbers (
> > services ) : 80 ( Web ) and 53 ( DNS )...
> >
> > On Linux Redhat 6.x Server, we can only to use "ipchains-rules"
> > function :
>
> You cannot compare iptables and ipchains easily, because in
53 -j ACCEPT
> iptables -A INPUT -i eth0 -p udp --dport 53 -j ACCEPT
> iptables -A INPUT -i eth0 -m state --state NEW,INVALID -j DROP
>
> Then, the Internet users they can only to use the port numbers (
> services ) : 80 ( Web ) and 53 ( DNS )...
>
> On Linux Redhat 6.x Server,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Check out http://tomii.dnsalias.com/firewall.txt for a well
documented ipchains script
- -Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Tuesday, March 11, 2003 9:45 AM
To: [EMAIL PROTECTED]
Subject: Firewall
(
services ) : 80 ( Web ) and 53 ( DNS )...
On Linux Redhat 6.x Server, we can only to use "ipchains-rules"
function :
ipchains -F
ipchains -A input -i eth0 -p tcp --dport 80 -j ACCEPT
ipchains -A input -i eth0 -p tcp --dport 53 -j ACCEPT
ipchains -A input -i eth0 -p udp --dport 53 -j ACC
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
http://tomii.dnsalias.com/firewall.txt
Well-commented ipchains script.
- -Original Message-
From: Joe Polk [mailto:[EMAIL PROTECTED]
Sent: Saturday, March 08, 2003 11:30 AM
To: [EMAIL PROTECTED]
Subject: Re: About the setting of Firewall
gt; So, how can I set the ipchains and iptable to filt which port numbers (
> services ) allow users to connect ?
> Are there any samples about ipchains and iptables ?
>
> Thank for your help !
>
> Edward.
>
>
>
>
>
>
> --
> redhat-l
Hello to you,
If I want to allow users to use some of port numbers ( services ), eg :
port 80 ( http ), port 53 ( DNS ), etc... only!
So, how can I set the ipchains and iptable to filt which port numbers (
services ) allow users to connect ?
Are there any samples about ipchains and iptables
Michael Schwendt wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Fri, 07 Mar 2003 23:57:19 +0800, [EMAIL PROTECTED] wrote:
>
> > Now, I want to know how to allow users connect to some of ports ( services ) by
> > using ipchains and iptables ?
> >
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 07 Mar 2003 23:57:19 +0800, [EMAIL PROTECTED] wrote:
> Now, I want to know how to allow users connect to some of ports ( services ) by
> using ipchains and iptables ?
> eg : allow user connect to ports : 80 ( http ), 53 ( DNS ) o
Michael Schwendt wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Fri, 07 Mar 2003 22:13:03 +0800, [EMAIL PROTECTED] wrote:
>
> > > On Fri, 07 Mar 2003 13:31:02 +0800, [EMAIL PROTECTED] wrote:
> > >
> > > > After the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 07 Mar 2003 22:13:03 +0800, [EMAIL PROTECTED] wrote:
> > On Fri, 07 Mar 2003 13:31:02 +0800, [EMAIL PROTECTED] wrote:
> >
> > > After the following setting of ipchains on 6.2 machine :
> > >
> > > /s
Michael Schwendt wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Fri, 07 Mar 2003 13:31:02 +0800, [EMAIL PROTECTED] wrote:
>
> > After the following setting of ipchains on 6.2 machine :
> >
> > /sbin/ipchains -F
> > /sbin/ipchains -A in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 07 Mar 2003 13:31:02 +0800, [EMAIL PROTECTED] wrote:
> After the following setting of ipchains on 6.2 machine :
>
> /sbin/ipchains -F
> /sbin/ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
>
> After the following s
Dear All,
After the following setting of ipchains on 6.2 machine :
/sbin/ipchains -F
/sbin/ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
After the following setting of iptables on 7.2 machine :
iptables -F
iptables -A INPUT -i eth0 -p tcp --dport 20 -j ACCEPT
But I can connect to http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
check out http://tomii.dnsalias.com/firewall.txt
Works fairly well.
- -Original Message-
From: forums [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 27, 2003 10:35 AM
To: [EMAIL PROTECTED]
Subject: ipchains, rules not working
Hai,
I
faces
#
# Firewalling rules
#
# eth0 = LAN side
# eth1 = INTERNET side
# lo = localhost
#
#
#
# Flush all rules
#
ipchains -F input
ipchains -F output
ipchains -F forward
#
# Block everything incoming as a standard but allow out
You need to load the ipchains module before the ipchains command will work.
Also, three iptables modules (ipt_REJECT, iptable_filter, ip_tables)
need to be unloaded
before ipchains can be loaded successfully.
in short, run these commands
rmmod ipt_REJECT
rmmod iptable_filter
rmmod
On Sun, 9 Feb 2003, Matthew Koster wrote:
> I am looking to set up IPChains in Red Hat 8.0 - Is this possible? It
> says that IPChains is incompatible with this kernal, if its incompatible
> why is it included???
You need to enable ipchains and disable iptables from the services. Since
On Sun, 9 Feb 2003, Matthew Koster wrote:
> I am looking to set up IPChains in Red Hat 8.0 - Is this possible? It says
> that IPChains is incompatible with this kernal, if its incompatible why is
> it included???
If I were you I'd spend my time getting iptables up and running inste
I am looking to set up IPChains in Red Hat 8.0 - Is this possible? It says
that IPChains is incompatible with this kernal, if its incompatible why is
it included???
Please help.
--
Matthew Koster
Web/System Administrator
http://www.kronos3.com
http://www.lostnode.net
--
redhat-list mailing
ore, it depends on whether
passive or active FTP is used.
> Hey, do you know off of the top of your head what I need to do to
> persist these changes so that the systems behavior wont revert after
> I reboot? It seems info ipchains doesn't address this issue.
> Thanks again.
Load your
On February 2, 2003 07:15 pm, Michael Schwendt wrote:
> Yes. And reply packets are not covered at all by that rule. And
> without knowing the complete set of rules, one cannot comment on
> this single rule anyway. The output of ipchains-save would be the
> least I would like to see.
r am I confused again?
> The output of ipchains-save
> would be the
> least I would like to see.
I hadn't even heard of ipchains-save until now.
Thanks for the information.
>Btw, opening all
> priviledged ports when
> in fact you want *just* active/passive FTP (ports
>
--- gabriel <[EMAIL PROTECTED]> wrote:
> On February 2, 2003 11:43 am, exits funnel wrote:
> > ipchains -I input -p tcp -s 192.145.23.101 --sport
> > 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
>
> i think the problem stems from the fact that you're
> on
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, 2 Feb 2003 16:58:24 -0500, gabriel wrote:
> On February 2, 2003 11:43 am, exits funnel wrote:
> > ipchains -I input -p tcp -s 192.145.23.101 --sport
> > 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
>
> i think the p
On February 2, 2003 11:43 am, exits funnel wrote:
> ipchains -I input -p tcp -s 192.145.23.101 --sport
> 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
i think the problem stems from the fact that you're only allowing unlimited
traffic on unpriviledged ports (i can't spell).
Hello,
I"m a pretty new Linux user and I've run into a
problem with ipchains. I have a windows box sitting
behind the same router as my RedHat 7.2 machine. I
desparately want to ftp some files from one to the
other but my firewall wont allow it. The IP addresses
are as follows
fer wrote:
>
> > When I tried the "modprobe -r ip_tables" it gave me an error that the
> > device was busy.
>
> This is because you provided not enough information about your
> system which you claim would be a fresh install. Red Hat Linux 7.3,
> however, is
would be a fresh install. Red Hat Linux 7.3,
however, is based on ipchains. Its firewall tools use ipchains. If
on your system the ip_tables kernel module and probably additional
netfilter modules are loaded, that means, you have modified Red Hat
Linux 7.3 and configured it to load modules which you ma
When I tried the "modprobe -r ip_tables" it gave me an error that the
device was busy. The previous two commands seemed to work ok.
If I use iptables, should I remove ipchains completely? Right now the
firewall is stuck on "High" and I can't change it.
Can I uninstall
Hello there,
I am trying to configuring my firewall using the iptable comand, but i'am
follow a script writen for ipchains and i not shure that iam "translating"
very, thats why i need your help
#Configuration for FTP, SSH and TELNET
/sbin/ipchains -A output -p tcp -d 0/0
col not available
>
> If I run ipchains -L I get an error that says:
> Incompatible with this kernel.
>
> How is that possible? It's a fresh install of 7.3? Anyone know what is
> causing this and how to fix it?
Try this sequence as "root" user:
# service i
On Wednesday, November 20, 2002, at 04:55 AM, <[EMAIL PROTECTED]>
wrote:
I have installed both ipchains and iptables with my new kernel 2.4.x
but now i want to work with iptables only but i donot know how ican
remove ipchains modules from kernel.
i know about
rmmod ipchains
whic
I've been doing some more searching on google... On 7.x do you have to
recompile the kernel to get lokkit to work with ipchains? Or I guess the
question is do I have to recompile the kernel to get ipchains to
work
I guess I could use iptables. Anyone willing to show me the commands to
I'm trying to run lokkit and change the firewall settings on rH7.3. I
can run lokkit and when click ok after making some changes it gives me
an error that says:
ipchains:Protocol not available
If I run ipchains -L I get an error that says:
Incompatible with this kernel.
How is that pos
Thanks Rick,
I disabled ipchains using chkconfig. Iptables is working fine.
Regards,
Raj
-Original Message-
From: Rick Johnson [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 19, 2002 4:18 PM
To: [EMAIL PROTECTED]
Subject: Re: Iptables and ipchains
-BEGIN PGP SIGNED MESSAGE
On Mon, 2002-11-18 at 10:00, [EMAIL PROTECTED] wrote:
> Hello,
>
> If you know iptables and ipchains, would you mind to help me to modify
> the setting ( change "the format of iptables" to "format of ipchains" )
> ?
>
> iptables -A INPUT -i ppp0 -
rpm -e ipchains
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
On Behalf Of [EMAIL PROTECTED]
Sent: Wednesday, November 20, 2002 5:26 AM
To: Redhat List
Subject: removing ipchains from 2.4 kernel
I have installed both ipchains and iptables with my new kernel 2.4.x
I have installed both ipchains and iptables with my new kernel 2.4.x
but now i want to work with iptables only but i donot know how ican
remove ipchains modules from kernel.
i know about
rmmod ipchains
which will remove ipchains when system is running but what is proper wway
of removing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 20 Nov 2002 14:55:43 +0500 (PKT), [EMAIL PROTECTED] wrote:
> I have installed both ipchains and iptables with my new kernel 2.4.x
>
> but now i want to work with iptables only but i donot know how ican
> remove ipchains modules
On Wed, 2002-11-20 at 10:55, [EMAIL PROTECTED] wrote:
>
> I have installed both ipchains and iptables with my new kernel 2.4.x
>
> but now i want to work with iptables only but i donot know how ican
> remove ipchains modules from kernel.
>
> i know about
>
>
I have installed both ipchains and iptables with my new kernel 2.4.x
but now i want to work with iptables only but i donot know how ican
remove ipchains modules from kernel.
i know about
rmmod ipchains
which will remove ipchains when system is running but what is proper wway
of removing
On Tue, 19 Nov 2002, Periyasamy, Raj wrote:
> I am running Redhat 7.3.
> In my server both ipchains and iptables are installed by default. Is
> this a valid configuration. Do I need uninstall one of them ?
I think it's almost valid, but not useful.
The kernel will only load on
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Periyasamy, Raj wrote:
| I am running Redhat 7.3.
| In my server both ipchains and iptables are installed by default. Is
| this a valid configuration. Do I need uninstall one of them ?
This is default. You'll lose ipchains in RH 8.0 by default
Title: Iptables and ipchains
I am running Redhat 7.3.
In my server both ipchains and iptables are installed by default. Is this a valid configuration. Do I need uninstall one of them ?
TIA
Regards,
Raj
Hello,
If you know iptables and ipchains, would you mind to help me to modify
the setting ( change "the format of iptables" to "format of ipchains" )
?
iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL FIN,URG,PSH -j DROP
iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL ALL
Hello,
If you know iptables and ipchains, would to mind to help me modify the
setting ( change "the format of iptables" to "format of ipchains" ) ?
iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL FIN,URG,PSH -j DROP
iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL ALL -j DR
Good day!
I have now a network with a redhat 6.2 box as a gateway to internet using
IPchains according to this guide:
http://www.linux.org/docs/ldp/howto/mini/Home-Network-mini-HOWTO-1.html
Then I heard that 'IPtables' would be better and eaysier to use and I found
this
, November 12, 2002 12:58 PM
Subject: Re: Ipchains
> Frist - Upgrade to a 2.4 series kernel, (if you aren't running one
> already) because IPTables is superior to IPChains.
>
> Second - Get Shorewall: http://shorewall.sf.net.
>
> Tom is a nice guy, and they will support you.
.248
>
> I have a firewall (ipchains) running on the router. my problem is when I ping to
>194.250.78.242, I get replyes, but there is no replyes when I ping 194.250.78.243,
>244 etc.
> When I stop firewall, I can ping, but I need firewall on my server.
> What rule ther
Frist - Upgrade to a 2.4 series kernel, (if you aren't running one
already) because IPTables is superior to IPChains.
Second - Get Shorewall: http://shorewall.sf.net.
Tom is a nice guy, and they will support you. You will need to _read_
the documentation, but a little patience and
:255.255.255.248eth1:1194.250.78.244
Bcast:194.250.78.247 Mask:255.255.255.248eth1:2 194.250.78.245 Bcast:194.250.78.247
Mask:255.255.255.248eth1:3
194.250.78.246 Bcast:194.250.78.247
Mask:255.255.255.248
I have a firewall (ipchains) running on the router.
my problem is when I ping to
On Thu, 2002-10-24 at 06:38, Vaughan Roberts wrote:
> After adding the rule, run:
> % ipchains-save > /etc/sysconfig/ipchains
> saving the original /etc/sysconfig/ipchains file before overwriting it of course ;-)
>
> This file gets read by ipchains-restore when /etc/init.d/ipc
After adding the rule, run:
% ipchains-save > /etc/sysconfig/ipchains
saving the original /etc/sysconfig/ipchains file before overwriting it of course ;-)
This file gets read by ipchains-restore when /etc/init.d/ipchains (in whatever rc[n].d
level on your m/c) starts up after reboot.
B
If you reboot the machine you will lose your settings. You need to add this
line:
/sbin/ipchains -I input -s 111.222.333.444 -j DENY -l
to the bottom of the file /etc/rc.d/rc.local
You need to make a chainrules file that you can execute to apply rules and
also you can append to it new IPs
Hello All
I have Ipchains rule added manualy
ipcahins -A input -i
...
my question is:
will this rule be deleted when i reboot the
server?
I mean, is the rule stored in the kernel or not
?
On Sun, Oct 13, 2002 at 01:09:26PM -0700, Nicholas Marsh wrote:
> No, but if you are looking for a good firewall package that uses
> IPtables get firestarter
>
> http://firestarter.sourceforge.net
>
> >Is anyone aware of script to convert ipchains rules to iptables ones?
No, but if you are looking for a good firewall package that uses IPtables get
firestarter
http://firestarter.sourceforge.net
On Sunday, Oct 13, 2002, at 02:36PM, Haisam K. Ido <[EMAIL PROTECTED]> wrote:
>Is anyone aware of script to convert ipchains rules to iptables ones?
>
>
1 - 100 of 690 matches
Mail list logo
