CentOS 5 Networking :: Open The Firewall To Internal Network Card?
Jul 28, 2010
I have just installed CentOS and it is working fine!I made a masquerade with the document there: I didn't used the script, because right now, I do not completely understand it, and obviously I am not modifying anything by leaving it like that.I was using Mandriva before and I am used to graphical tools My questions are:I add the following lines in my iptables:
[root@localhost ~]# service iptables stop
[root@localhost ~]# iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
[root@localhost ~]# service iptables save
[code]....
View 1 Replies
ADVERTISEMENT
Jul 3, 2010
Does anyone know if it is possible to filter/block network traffic between internal hosts on a lan?
Eg. : Linux firewall/router ( 192.168.0.1) - LAN Default G/W - all internal > external traffic gets filtered.
How would you filter tcp/ICMP/UDP traffic from internal host a ( 192.168.0.2 ) to host b ( 192.168.0.3)
All the internal hosts have the linux f/w as the default gateway, and are all on the same /24 subnet.
I would like to know if I can filter traffic between internal hosts.
View 3 Replies
View Related
Aug 6, 2010
I will try to explain a bit first about my network typology: I have one cent os 5.5 machine with 2 nics - external one 86.x.x.122 and internal one with 2 IPs: 192.168.1.1 and 89.x.x.121. The ideea is that I have a public subnet (86.x.x.120/29) of IPs which are routable only through 86.x.x.122 so I have a webserver hosted on a different machine with the IP of 89.x.x.122 and GW 89.x.x.121 - everything works perfectly fine, except that I cannot access from the internal network 192.168.1.0 / 24 the so called DMZ (roughly) - the 89.x.x.122.
What really makes me crazy is that I setup the IPtables rules correctly because I can access the webserver from the outside world but I cannot accessit from the internal network...
what I'm missing - why the 192.168.1.0/24 cannot see the 89.x.x.122 machine... What IPtables rules should I add?
View 2 Replies
View Related
May 13, 2010
I could no handle/circumvent on the past week, despite of the several "googling" and documents reading. I will try to mention all needed bits... I'm managing a network with the following structure:
eth0: internal net
eth1: DMZ
eth2: 10 mbit/sec sync line with eight public /29 IP's + a /30 interconnection network. All public IP's must use the interconnection's network gateway.
eth3: ADSL with ppoe with fixed IP (ppp0).
Now, a few extra info:
- All internal traffic is routed through ppp0 except when it's destined for DMZ and public IP's range.
- DMZ traffic is routed either through ppp0 or eth2. This is done by source IP.
- eth2 has on IP from the interconnection network, and six public IP's are also defined on eth2. Command: "ip addr add ...."
[code].....
View 6 Replies
View Related
Aug 25, 2010
I just upgraded from Ubuntu 9.04 64-bit, to CentOS 5.5 64-bit and my RT-73 USB network card doesn't seem to want to function. It always worked fine in Ubuntu by default (plug and play). Is there some setting I need to make to get this working?Even BT-3 (which is quite old) recognizes the RT-73.
View 19 Replies
View Related
Apr 27, 2010
I have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.
View 5 Replies
View Related
Sep 27, 2010
I have properly configured my router to open a port for Transmission and Vuze. The OpenSuSE firewall settings are somewhat confusing, however. How do I add a port specifically for the BT protocol? I know it's the firewall causing issues, because when I shut it down, my BT apps roar to life, and die with a whimper when I turn it back on. In Ubuntu, opening a port in the router is automatically configured in the firewall; that is apparently not the case with this distro.
So, when I go to Yast Firewall, I see "allowed services" under the tabs available. When I hit that tab, I see a dropdown menu that contains services such as NetBios Server and Samba Server. Am I choosing one of those available and adding a port to it? Am I adding a custom service via the Advanced settings, and if so, why isn't there a way to label the service so that it shows up under allowed services?
View 9 Replies
View Related
Feb 13, 2009
Can anyone please tell me the files that a network card needs to use - know it needs a file called ifcfg-eth0 in etc/sysconfig/network-scripts
What other files has information relating to eth0
View 1 Replies
View Related
Feb 11, 2010
I am looking for a gigabit network card for my centos 5.4 server. I am looking for something known to work well with linux. I have been on the bestbuy site and I found a DLink (DGE-530T) card with support for linux from the vendor but after reading feedback from users with that card I am not so sure it is linux friendly. I am now thinking of buying online.
View 2 Replies
View Related
Oct 2, 2010
I can't get wake up on lan (wol) to work on my network card.The strange thing is that before I had it working with the exact same hardware. But I was on Centos 5.4 then. Now I am on Centos 5.5.Am I correct in concluding that the sky2 driver does not support wake up on lan?
View 4 Replies
View Related
Jan 21, 2011
I had installed a Centos 5 server, with one network interface card and work find. Now I want to install ADSL (PPPOE) dial-up for internet in this server, so need to add a 2nd network interface card (RTL8139D or other) . After plug the network card, what I need to do in Centos to find this new card and config it?
View 1 Replies
View Related
Jan 11, 2011
I have a question about /etc/services file. If I open ports in firewall, do I need to alter /etc/services file in order for certain apps to work?
kpasswd 464/tcp # kpasswd
kpasswd 464/udp # kpasswd
# Theodore Ts'o <tytso&MIT.EDU>
# 465 is illegal used by eMail Server
smtps 465/tcp # eMail Server
#urd 465/tcp # URL Rendesvous Directory for SSM
igmpv3lite 465/udp # IGMP over UDP for SSM
# Toerless Eckert <eckert&cisco.com>
digital-vrc 466/tcp # digital-vrc
digital-vrc 466/udp # digital-vrc
Above example shows if 465 tcp isn't altered, Postfix MTA fails to listen on 465 tcp port. What if there's a bigger span 3000:7000 TCP/UDP, is there a need to alter each line by hand?
View 2 Replies
View Related
Jun 30, 2009
I've just set up a PC with CentOS 5.3 runing on near identical hardware to an existing 5.2 machine. Motherboard is Asus M2A-VM which I discover by chance generally works very well with CentOS. Ethernet is on board Nvidia.The older machine just did run gigabit speed without any intervention at all, rather to my surprise. The newer machine insists on running at 100 Mbit which is annoying as it is connected to a NAS through a gigabit dumb switch.
The obvious difference between the two is that ethtool on the older machine says that supported ports are TP, and so the port is TP. Whereas the newer machine says that supported ports are TP or MII and insists on running MII. I cannot change this with ethtool -s eth0 port tp. Perhaps not too surprisingly, mii-tool says that the supported speeds range up to 100 Mbit.
View 13 Replies
View Related
Nov 26, 2009
Suppose that it is not convenient to go behind a machine to have a look.So I want to use a command to show whether the cable is plugged into network card. (Media connected or not)Can ifconfig do this? Or another one?
View 2 Replies
View Related
Feb 10, 2011
Recommend open source tools that can help in figuring out if we are experiencing a network latency due to the newly installed firewall on our server.
View 1 Replies
View Related
Feb 8, 2010
i have a linux server runnig oracle applications. i need to access this server from putty using ssh through internet. i did by registering my static ip with the dnydns.org and i am able to connect to the server. but now there is no security to authenticate any user as any one knowing the password can login to it.
i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously. so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?
View 8 Replies
View Related
Sep 3, 2009
I have a problem sending of file attachment using Instant Messengeri have a firewall using firestarter, if i used outside firewall they can able to recieve my file in instant meesenger but if i used firestarter it always cancelled my sending of file attachment....
View 3 Replies
View Related
Feb 1, 2011
I have a toshiba a15 s127. it didn't have a wireless card so i ordered one and installed it myself. however, my computer is not seeing the wireless card and i don't know what driver i need because the card itself didn't come to me in a box, so i am not sure what brand it is. All i know is that it is an original part.
On another note, when i go to network settings and try to config my wireless settings, i do not know what number to put in the BSSID field. (thinking i use the wireless card's MAC address, but ?) and don't know if i use the wireless card's MAC adress or the wireless router's MAC address or the Modem's MAC address in the actual field for the MAC address. ( i know, i know, i sound totally clueless--well, i am!) {note: the wired network works fine.}
How do i get my computer to see the wireless card and how do i configure my computer once it does see the card?
View 1 Replies
View Related
Aug 6, 2011
I would like to turn off the internal wireless card since my external wireless card has better signal. Problem is if I turn of the internal card the external card turns off as well. My external card is an alfa awus036h 1000w. Laptop Gateway NV53. How would I disable the internal card and use only my external card?
View 2 Replies
View Related
Jun 7, 2011
every now and then Firewall Builder fails to open rules (*.fwb)and I have to use some old backup. it does load 'object libraries' but the main 'currently editing policy' panel is empty.(in gnome, debian testing amd64)
View 1 Replies
View Related
Jan 26, 2010
I am trying to make a vnc connection from pc #2 to pc #1. Pc #1 is a debian pc behind a zyxel router (P-2602HW-D1A). Pc #2 is a windows xp pc another place at the internet.I have configured the zyxel router to forward incomming trafic on port 5902 to the local ip-adress of the debian box. The debian box is running a vnc server, listening on port 5902.But i dosn?t work.I have tryed to scan the zyxel routers ipadress on port 5902 from the internet, but the scanner says that the port is closed.The vnc server on pc #1 is working fine on the local network. I can connect to the server from a pc on the same side of the zyxel router.Is it deffenitly a router problem, or could it have something to do with debians own firewall?
View 2 Replies
View Related
Apr 20, 2010
How do I open ports 5198/udp and 5199/udp on a slackware based firewall?
View 2 Replies
View Related
Jun 4, 2010
I greet you at the same time ask me to help with a problem I have and I could not solve. Within the requirements I have is to connect a network that is connected by VPN to my LAN.The detail is I could have connection to the network by adding a network card (eth3) on the firewall and connect to the VPN router (DLINK) cable network, but I can not reach the other estin that are in the VPN.
It should be noted if I add a station within the network: 10.30.1.X/24 has no problems connecting with the other destinations.Physically this router is inside my 10.30.1.X DATA CENTER another wan.
View 1 Replies
View Related
Oct 6, 2009
I am not too knowledgeable on networks, however I think this should be possible.I have a computer at work, which is connected to the work network. I have files stored on the central server here and also my local computer.
At this place, computer support say "We do not offer this service". However they also say "The simplest way to do what you are asking is to install an ssh server on your actual workstation".I have done this, and it the openssh server is working because I can test from my workstation by doing ssh user@hostname and it works.What I want to do however, is to connect from outside the network. Firstly, is this possible, and secondly, what is the syntax for ssh in order to do it.
View 3 Replies
View Related
Aug 16, 2010
How to open RTP UDP ports (port_number : port_number) in openSUSE 11.2 firewall with yast?
View 2 Replies
View Related
Jan 8, 2010
I'm encountering a strange problem. I need to open and forward all UDP and TCP ports related to VoIPtelephony (5000:32000) in the Suse 11.1 server that's acting as router/firewall in our setup. The ports must redirect to a Asterisk server in the local network. (This server has the IP adress 192.168.0.3)I've opened ports in Yast (Firewall>Ports>Advanced) and putted in some masquerading rulesirewall>Masquerading):0/0,192.168.0.3,tcp,5000:31000,5000:310000/0,192.168.0.3,udp,5000:31000,5000:31000when I do a nmap localhost I get:Starting Nmap 4.75 at 2010-01-08 16:52 CETInteresting ports on localhost (127.0.0.1):
Not shown: 991 closed ports
PORT STATE SERVICE
21/tcp open ftp
[code]....
View 9 Replies
View Related
Mar 25, 2011
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
View 9 Replies
View Related
Jan 28, 2009
cannot ping internal network
I am a new user to Linux but in the last couple of months gained some Idea about it,I am trying to set up a small network in my office having 3 windows xp PCs, two fedora10 PCsI have an adsl router with 4-port hub connecting to the internet, one switch (say sw1) and one linux PC (say linux1) is connected directly to the router, the three win xp PCs are connected to switch sw1.all the above is working fine, I am able to get connected to Internet In all the systems, and able to network among all the above four.Now I want to make the linux1 as a proxy server for, hence I added another network card into it connected it to another switch sw2, which is connected to another linux pc (say linux2).
I have tried a hundred things, and googled an equal no. and finally posting it here.In order to reduce confusion I have disabled DHCP in all machines, and given static ips insteadNetworkManager was not happy about it, hence to fix my static IP i disabled NetworkManager ('chkconfig NetworkManager off')
View 10 Replies
View Related
May 11, 2009
I did a new install of Kubuntu 9.04. I use static ip addresses. In an attempt to resolve the issue with the network manger in 9.04, I removed the network manager. I am now able to set the ip addresses just fine and I get to the internet. However, for some reason, I can't get to my internal router. Has anybody encountered this or have a suggestion on what I may try?
View 6 Replies
View Related
Feb 25, 2010
I am a networking admin of a network running a mac osx server Running the Darwin 9.8.0 kernel. My goal is to get a firewall computer running ubuntu with the program IQfirewall. My networking hardware goes ( __ cat 5 cables)
*internet* _____DS1___ cisco router_____ a small switching hub___OSX server___a ProCurve switch ___ a cat 5 box____ routers ___ computers.
from what i have read I want the server to act like a gatway/firewall and sort of have the server forward packets to the OSX server.How would I get started. IQfirewall uses a GUI interface and I can later copy my rules if you would want to see them. it is based off of iptables
View 4 Replies
View Related
