| |
| |
| |
|
Page: 1 2 3
Comments:
<0> I am redirecting some connections to remote ports to a local port, a proxy, but I need access to the original address... someone here suggested using ULOG and a netlink socket with the proxy to get the address, but the proxy is coded in Python and it does not have netlink socket support... is there any other way to access the original address after redirection ?
<1> searching through /proc/net/ip_conntrack might work
<2> RE
<0> danieldg: great... thank you
<3> This is the part of being a geek I hate. I spent all day setting up an IRC server, with all the requisite problems. Now I'm done, I have no use for it, and I'm bored.
<4> how i configure my port witch iptables
<1> what do you mean?
<4> my azureus he dont want download my port is close
<4> Test du port 10000 ... Erreur NAT
<1> did you allow port 10000?
<4> yeah
<4> i want open this port
<1> iptables -I INPUT -p tcp --dport 10000 -j ACCEPT
<4> do i need reboot when installed iptable?
<1> no
<4> [root@modemcable060 e]# iptables -I INPUT -p tcp --dport 10000 -j ACCEPT
<4> bash: iptables: command not found
<1> you do need to install iptables
<4> i installed him
<5> e__: /sbin/iptables
<4> ip6tables ?
<1> no, that's for ipv6
<4> bash: cd: iptables: N'est pas un rpertoire
<4> [root@modemcable060 sbin]# iptables -I INPUT -p tcp --dport 10000 -j ACCEPT
<4> bash: iptables: command not found
<1> it looks like it's not installed
<4> ok
<4> how i install him
<5> e__: Did you try what i said?
<5> Oh.
<5> Hehe.
<5> What dist btw?
<4> how i install iptables where i download that
<1> your disto should have a package
<4> what a name
<1> proabably called iptables
<4> i have yumex
<4> ill try find it
<4> ebtables is not good? i have just it in my search
<1> no, ebtables is a different program too
<4> k
<1> if you really can't find it, you could build it from source
<4> nah
<4> i cant to do that
<4> i am noobs
<1> why not?
<4> i dont know to prosed
<4> proced
<1> ah. ask your disto's channel - nobody there knows how to install iptables?
<4> i have fedora core 4 full instalation
<4> 6.8 GO
<1> if you have ip6tables, you should have iptables
<4> ok
<1> so that's puzzling to me
<4> can i seach iptables on my system
<1> try 'locate iptables'
<4> i find nothing witch locate iptables
<1> the command "locate iptables" returns nothing?
<4> oh commande on the terminal :S
<4> sorry
<1> run /sbin/iptables instead of iptables
<4> [root@modemcable060 sbin]# ./iptables ?
<1> yes
<4> iptables v1.3.0: no command specified
<4> Try `iptables -h' or 'iptables --help' for more information.
<4> [root@modemcable060 sbin]#
<1> /sbin/iptables -I INPUT -p tcp --dport 10000 -j ACCEPT
<4> [root@modemcable060 sbin]# ./iptables -I INPUT -p tcp --dport 10000 -j ACCEPT
<4> [root@modemcable060 sbin]#
<4> ?
<4> is okay?
<1> it worked
<5> Heh.
<6> it's -A not -I
<6> -A is for --append
<1> but -I is for --insert
<1> which means it goes at the start, ahead of any conflicting rules
<6> ahh
<7> -A PREROUTING -p tcp -m tcp --dport 6697 -j DNAT --to-destination 192.168.0.3 and -A FORWARD -d 192.168.0.3 -p tcp -m tcp --dport 6697 -j ACCEPT look right to you?
<8> when writing my iptables rules, can I use a hostname instead of an IP address for port forwarding ?
<9> You tried it, and ... ? No. But you can use dig(1) and simple shell substitution: --to `dig +short hostname.fqdn`[:port]
<9> (won't work if hostname.fqdn fails to resolve or resolves to more than one IP.)
<9> (Offer void where taxed or prohibited by law. Prices may vary in Alaska and Hawaii. Use or rebroadcast without the express written consent of Major League Baseball is prohibited. Professional stunt driver on a closed track.)
<10> hey guys
<10> anyone know much about QoS on linux?
<11> good morning
<11> I want to install iptables with all the patch-o-matic-ng adn l7-filter patches
<11> what I normally woul do is, after applying the patches, make && make install
<11> but as I'm using Debian, somebody suggested me to apply the patches to the .deb package, that's possible?
<12> why not build your own debian package
<12> when you do make install
<12> do
<12> make install DESTDIR=/usr/src/iptables-pkg
<12> then look at the deb package creation tools
<12> to make iptables-pkg into a .deb
<11> like using "dpkg-buildpackage -rfakeroot" ?
<12> i have no idea its been a while
<12> but last time i think it was
<12> make a DEBIAN/control file in the /usr/src/iptables-pkg folder
<11> anyway, what's the diference?
<12> then go to /usr/src and dpkg -b iptables-pkg iptables-pkg.deb
<12> or something like that
<12> none, it just makes it easier to upgrade/remove.
<11> ok, many thanks
<12> np
<12> http://linuxdevices.com/articles/AT8047723203.html
<12> this will probably help you
<13> what would be good for an gui iptables config ?
<14> be as good as nuface ? (http://www.inl.fr/Nuface.html, demo : https://nuface.inl.fr/) </self_ads>
<14> sorry ;-)
<12> be great if the demo was in english
<12> ;)
<15> Mon franc,ais c'est tres mal.
<14> phycho: :-)) well done ;-)
<12> french is no good to me =)
<16> hello
<11> phycho: thanks for the link
<11> but I decided to do it without making the deb package
<11> but I have reboot and I have no iptables modules loaded
<11> :(
<11> what I have tried to do is:
<11> http://pastebin.ca/39939
<17> Hi, anyone there?
<17> How do i limit bandwidth on eth0? I have 1mbps but want to use only 128k.
<12> use tc
<17> Tc?
<12> google it.. traffic control for linux
<12> its part of iproute
<17> Let me look.
<17> Eh... Could you give me the name of that package for debian?
<12> apt-cache search iproute
<17> Thanks.
<18> hi, just updated hosts.deny; howto activate new hosts.deny?
<12> its automatic.
<12> just edit the file and save i
<12> *it
<18> psycho: can you still ping a listing in hosts.deny?
<12> yep
<18> psychoschlumpf: ok, can you still goto the site?
<12> which site?
<18> psychoschlumpf: the site listed in the hosts.deny?
<12> probably
<12> hosts.deny only blocks incomining connections
<12> and only to the software you have listed in the file
<12> e.g. ssh : 192.168.0.1 : deny
<12> would block all ssh incoming from 192.168.0.1
<18> psychoschlumpf: ok, howto block browers from using sites?
<12> use iptables.
Return to
#iptables
or
Go to some related
logs:
#php
gentoo on a dell d520
#linux
#physics
ubntus
funny elephant on chair
#perl
#oe
#perl
#lisp
|
|