| |
| |
| |
|
Page: 1 2 3
Comments:
<0> anyone know what kernel modules I need for the 'mangles' table?
<1> ipt_mangle
<1> and it's the "mangle" table
<0> thanks
<2> trappist thanks, I had it enabled but the problem is on the remote end... (the connecting host), I can from another hosts, but the only relevant one (customer's) can't... it throws Illegal PORT... do you have an idea what can I check?
<3> Yango: probably a connection tracking issue on his end
<4> waht can i do aginst the steping stone attack as normal internet user
<4> info: http://66.249.93.104/search?q=cache:TvY-FeVsKS0J:ise.gmu.edu/~xwangc/Publications/IFIPSec2001-SWT.pdf+watermark+traffic+analysis+stepping+stone&hl=de&gl=de&ct=clnk&cd=5
<4> thank you for your help my logs are felling up very fast
<4> hello!
<5> I didn't try to follow the link, don't know what you're talking about.
<4> <4> waht can i do aginst the steping stone attack as normal internet user
<4> <4> info: http://66.249.93.104/search?q=cache:TvY-FeVsKS0J:ise.gmu.edu/~xwangc/Publications/IFIPSec2001-SWT.pdf+watermark+traffic+analysis+stepping+stone&hl=de&gl=de&ct=clnk&cd=5
<4> <4> thank you for your help my logs are felling up very fast
<2> TheBox, why don't you describe the symptom you're seeing instead of waiting for people to read a 60 pages paper? It might help you out better
<5> :)
<4> okay!
<4> this will take a long time
<5> If it's long, maybe do a pastebin post.
<4> okay!
<4> it is very late here can i show it to you tomorow?
<5> I'll be here ... off and on anyway.
<0> is there some way I can install every single module in a directory?
<1> install from where?
<0> a local directory
<0> or rather current directory
<1> you mean you have a bunch of .ko's that you want to install?
<0> yea
<0> someone helped me out though, thanks anyway
<6> i want to block an ip from DOS'ing a customer- REJECT or DENY should be used./
<6> *?
<7> A single ip address is DOS'ing someone?
<6> no
<6> i am just making a scenario
<6> i want to block all traffic from a specific ip
<1> DROP (there is no DENY) because you don't need to continue to fill up the pipe with replies
<7> Well, think about what REJECT does and what DROP does - it really depends on your purposes
<7> That's what I was implying, but I wanted him to see it for himself :D
<8> ndas
<9> anyone ard ?
<1> maybe
<9> hmm
<9> u have a problem here
<9> i mean i have a problem here
<9> :P
<9> i have 2 nic card eth1(172.16.28.1) eth2(172.16.24.254)
<9> what iptables rule do i need to allow access between these 2 ?
<5> what netmasks?
<9> both /24
<5> and hosts on each segment should be able to reach hosts on the other?
<9> ya on the server it self it can
<9> but from client side cant
<9> like the client from .28.0/24 cant ping .24.0/24
<5> is this machine the default gateway for each subnet? IOW, is there a 3rd NIC going to the Internet?
<5> If not, hosts in .28.0/24 need a route to .24.0/24 with 172.16.28.1 as gateway.
<5> And hosts in .24.0/24 need a route to .28.0/24 with 172.16.24.254 as gateway.
<5> IP forwarding must be enabled (/proc/sys/net/ipv4/ip_forward).
<5> nothing in the filter FORWARD chain to block inter-subnet traffic.
<9> ya there are 4 network on it
<9> http://pastebin.com/710739
<9> this is my route
<9> http://pastebin.com/710745
<9> it turn out to be like this
<9> but still not working
<1> are you filtering them in FORWARD?
<9> na
<9> nothing
<9> just foward
<9> http://pastebin.com/710750
<1> typo on line 64
<1> but eth1 and eth2 should be able to communicate freely
<9> eth3 is not used yet
<9> errr cant
<9> i have a client pc with IP 172.16.28.2 and i am trying to ping 172.16.24.1
<9> request time out
<1> can the firewall ping it?
<9> if 28.2 ping .24.254(eth2 interface) it work
<1> pinging anything on the firewall is all the same
<1> can the firewall ping everything?
<9> firewall ?
<9> ya
<1> all the clients have routes for all the IP ranges via the firewall?
<1> (except their own)
<9> firewall cant ping eth3 which .240.254
<9> add on the client 28.2 ( route add 172.16.24.0 255.255.255.0 172.16.28.1)
<9> still cant
<9> :(
<10> Hi all! :)
<9> :(
<9> hi
<9> :(
<10> what happened?
<9> i have 4 interface
<9> eth0(public) eth1(172.16.24.1) eth2(172.16.28.254) eth3(172.16.240.254)
<9> sorry it's eth0(public) eth1(172.16.28.1) eth2(172.16.24.254) eth3(172.16.240.254)
<9> the client on eth1 (client IP 28.2) cant ping the eth1 network
<9> er ?
<10> which rules have you applied?
<9> http://pastebin.com/710750
<9> http://pastebin.com/710745
<9> take a look at this http://pastebin.com/710771
<9> brb
<10> I can't find what's wrong with this rule to accept traffic on 8080 port
<10> iptables -I INPUT -i eth0 -p tcp --dport 8080 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
<10> I put it as "I" just to test, 'cause there are many rules filtering traffic
<10> Is that correct?
<10> Ideas? :(
<10> back
<10> I can't simply understand it
<10> nmap shows me that the port is CLOSED!
<10> :-\
<10> I simply can't
<5> what's listening there?
<10> A httpd
<10> wait
<10> the netstat seems to be binding the port
<5> and you have verified this? It's listening on the eth0 IP:8080?
<10> tcp 0 0 127.0.0.1:8080 0.0.0.0:* LISTEN
<5> ok
<10> WTF!?!
<5> 127.0.0.1:8080
<10> yes, I realised
<10> but... can't understand why
<5> why it's only binding localhost?
<10> I don't know
<5> what do you not understand?
<10> why the httpd is binding the port
<10> I didn't tell it to
<10> May iptables have something to do with that?
<10> I mean, could It be responsable for that?
<10> in same way?
<5> no
<10> ok, then I'm gonna cut my hands off....
<5> apache?
<10> rob0, no, thttpd
<10> It's command line called
<5> something in its config file, I bet
<10> Yes :-\
<10> sorry for disturbs...
<5> np
<10>
<10> I found it
<10> Incredible but possible
<10> the "hostname" of the httpd pointed to a name that
<10> casually
<10> was declared on /etc/host as 127.0.0.1
<10>
<10> hopefully that you make me see that
<10> Thanks
Return to
#iptables
or
Go to some related
logs:
#ubuntu
#centos
#lgp
#perl
kernel oops with short multicast udp packets
win32 codec* suse rpm
Fatal signal: Segmentation Fault (SDL Parachute Deployed) alsactl
#redhat
mplayer double video
php __FILENAME__
|
|