how to configure my firestarter firewall. I have a website which requires the port 1935 to be open. I figured out how to open the port using firestarter. Is there anyway to make the port open only to this website, and not to every other website for security reasons of course.
View 4 RepliesI installed Firestarter firewall on debian Squeeze.Now i note there is a gui available in System->Administration which apparently does not need to be running all the time - its not set up to start on boot.When I boot I notice the boot message has a line saying "Starting Firestarter firewall .... failed"When I am logged in and type "/etc/init.d/firestarter status" as the Firestarter FAQs say, I get"Firestarter is running... ... (warning)"I can run the gui manually and still same message.
View 2 Replies View RelatedI will be relocating to a permanent residence sometime in the next year or two. I've recently begun thinking about the best way to implement a home-based network. It occurred to me that the most elegant solution might be the use of VM technology to eliminate as much hardware and wiring as possible.My thinking is this: Install a multi-core system and configure it to run several VMs, one each for a firewall, a caching proxy server, a mail server, a web server. Additionally, I would like to run 2-4 VMs as remote (RDP)workstations, using diskless workstations to boot the VMs over powerline ethernet.The latest powerline technology (available later this year) will allow multiple devices on a residential circuit operating at near gigabit speed, just like legacy wired networks.
In theory, the above would allow me to consolidate everything but the disklessworkstations on a single server and eliminate all wired (and wireless) connections except the broadband connection to the Internet and the cabling to the nearest power outlets. It appears technically possible, but I'm not sure about the various virtual connections among VMs. In theory, each VM should be able to communicate with the other as if it was on the same network via the server data bus, but what about setting up firewall zones? Any internal I/O bandwidth bottlenecks? Any other potential "gotchas", caveats, issues? (Other than the obvious requirement of having enough CPU and RAM).Any thoughts or observations welcome, especially if they are from real world experience in a VM environment. BTW--in case you're wondering why I'm posting here, it's because I run Debian on all my workstations/servers (running VirtualBox as a VM for Windows XP on one workstation).
I have installed Firestarter, and set it up following some manual (just a simple, baseline setting, nothing fancy). However, after restart I got error message: Starting the Firestarter firewall... failed! and then, later: startpar: service(s) returned failure: firestarter ... failed! Why this happens?
View 4 Replies View RelatedI have a bit of an odd network setup, shown in the pic here:I am trying to remote desktop from the XP boxes on the side to the one on the bottom, behind a Debian box/firestarter firewall. Is this possible to do without changing my network (IE wiring/topology) setup? If I had my druthers, I would put the router behind the Linux box, before the XP box, but my work laptop does not allow me to connect in that fashion as I can't change the internet settings.
I am certain the setup is correct on both the Windows clients and host, so it has to be something with my firestarter firewall, or something else I'm completely missing. I have the RDP port opened on firestarter, but whenever I try to connect to the XP box, whether it's by computer name or LAN IP address, it is unable to connect. I had thought about setting up a VPN server on my Debian box, and then VPN'ing to it, and then in turn RDC'ing to my Windows machine. Is this possible? If all else fails, I may just plug the Windows box directly into the router and deal with the lower security or get a second wireless router just for my work pc.
I have just recently installed firestarter to get an idea of iptables editing with a GUI. Firestarter works great and I love it, however when I turn my system on, and my system is booting up the terminal displays a "Failed" message when attempting to start up firestarter. Now I have been doing my homework (reserch) and have read that a user will get this error because firestarter trys to load prior to the network manager starting up. I have also read some other variables that can cause this is if you use network manager and have a password on your user account (which I do have) can cause this issue.
However in most cases from what I have read is even though it gives the user a "Failed" startup message, once the user logs in, and is connected to the internet firestarter will actually load the iptables. I did some tests and from what I understand I can see that this is true because I have allowed access to certain torrent trackers, and denied access to others, and I can see some come online. Does firestarter load iptables once the user logs in? Or once it fails to load, does it not load at all unless you manually open/load the application. If firestarter just modifies iptables, then once I save my listings in firestarter then I really don't need it to start up correct?
i connect to internet with the connection (with Name: DSL Connection 1) that made by myself. now i wanna use the firestarter but i have a problem.
View 5 Replies View RelatedI updated my system with system updates and when i restarted.I couldn't access the internet from my desktop. i got on laptop internet worked just fine..i disabled firestarter and mozilla connected to the internet just fine. I turned firestarter on. and i couldn't reach anything.. What do I have to do to get firestarter to allow me to connect to the internet via firefox
View 3 Replies View RelatedI am trying to set up a computer to act as a firewall/gateway on my network, and am using the Firestarter program to do this. Everything appears to be set up correctly, and I followed the instructions on their website completely, and I get an error message when I try to start the firewall. It says that eth0 (my internal NIC) isn't ready, and to make sure it's active.
View 3 Replies View RelatedI gave a presentation on the Firestarter Firewall interface at my local LUG meeting tonight (another member followed with a presentation on iptables).You can download a copy of the handout from this link.
View 3 Replies View RelatedI was just wondering if anyone uses 'Firestarter' firewall, and what you think of it?
View 13 Replies View RelatedI am trying to run Firestarter firewall but keep getting the message ETH0 is not ready. This problem has been highlighted by others but is there a simple way of sorting this out, answers in other forums are wide and varied. but it's not clear if they have been successful.
View 7 Replies View RelatedI am a bit new to fedora I have the following scenario in testbed of mobile ad hoc network
pc1 pc2 pc3 pc4
192.168.1.1 192.168.1.2 192.168.1.3 192.168.1.4
Now I have the source as pc1 and pc4 is destination and I want to send data/ping pc4 from pc1 via pc2 and pc3 using firewall firestarter,
Have homebrewed machine, was running Fedora 8. Installed Fedora 10.Firestarter firewall manager keeps crashing after about 5 minutes. Restarts, runs for a while, then crashes.Thought it might be an IPTABLES turf war with the native Fedora 10 gui firewall manager, so disabled that at System > Admin > Firewall. Also disabled SElinux. Still have problems.Firestarter firewall seems to work OK, just the gui Firestarter monitor/manager.If anyone has ideas as to cause, I'll take a clue.I could use Firestarter to generate the IPTABLES by ..manually editing the /etc/firestarter/inbound|outbound/allow-.. files and then../etc/init.d/firestarter restartBut I find the events log useful to look at. Anyone know where the events log file is kept in the file system?
View 4 Replies View RelatedI have just switched over from firestart to gufw.I have set all incoming traffic to deny and all outgoing traffic to allow.I have rules set for incoming traffic, and have only opened 1 port on my system for torrents. My router also only has the same port opened which again is for torrents.I use "Network Tools" which is included on squeeze and do a portscan of 192.168.1.100 and 127.0.0.1 I get all kinds of crazy ports coming back as opened. What is even stranger is if I do a few scans, these ports change, so one port on one scan may come up as open, then it will disappear and a different port may show as open.
Mind you none but the torrent port is forwarded in my router, I have no idea what any of these other ports are, or why they are even showing up.What the heck is going on? I dont think this is normal? Am I at any higher risk for attack?
I wonder do we need firewall for home pcs at all?I mean, fine, for servers and stuff, but I have my own laptop station. People have different position on this issue.
View 14 Replies View RelatedI have a Bubba Two headless PC box and on it a Debian GNU/Linux Squeeze operating system.
I have upgraded my Bubba Two [URL]to Debian Squeeze from Debian Etch following these steps: Running Debian lenny or squeeze on Bubba Two [URL]
After this upgrade I have setup networking on Bubba following these steps: Setting up networking [URL]
In the case [URL] doesn't work, here are these steps:
[Code].....
I want to know if I can download Fedora's firewall config utility and convert it to a .deb file using alien.
View 6 Replies View RelatedI wanted to know which is the best firewall application for my debian squeeze amd64 home desktop. I prefer a simple interface yet powerful enough. After googling I found two options - gufw & firestarter. I am not sure which one to choose between these two.
View 6 Replies View RelatedI've got a Shorewall (Shoreline?) firewall up and running, but it's logging to /var/log/messages. I'd much rather have it logging to another location e.g. /var/log/firewall but can't find (a clear enough) explanation on how to do this. Apparently, it varies greatly depending on the distro, the kernel, and the version of Shorewall that is running. You'd think it would be something as simple as setting a path in a config file, but apparently not. I'm running a stock Lenny kernel on the firewall machine. It comes with version 4.0.15 of Shorewall.
View 9 Replies View Relatedi have recently installed freeradius in my debian jessie. i want to configure it to act as radius to my home router to authenticate wifi users. i want to use EAP-PWD auth medthod but there is no such section found in eap.conf.does any body know's how to configure EAP-PWD??
View 1 Replies View RelatedI've got a task: make time server, that gets time from gps, shows it on display and send to different systems through different ports like com, ltp, etc.
Solution is qt program, included in hybrid iso image.
I've created my binary-hybrid.iso debian, added my program and installed it on pc sudo dd if=/media/cdrom/binary-hybrid.iso of=/dev/sda then i restarted and everything is ok, but...
I also need:
1) to make my pc works as ntp-server, to do this i must change file ntp.conf in ntp****.deb before i build my iso
how can i do this?
as i realized according to live.debian.net/manual it's possible to do by putting smth to /live-build/config/packages.chroot and by adding some parameters to lb config but i can't find how and what
2) to save my program parameters after reboot. for example, i have such parameter as gmt. it defined as +3. i can change it while program is running to -5 for example and i want to have gmt -5 when i next time turn on my computer
When in programming it is simple - program creates ini file in it's directory and read/write parameters from this ini-file, but how to make possible to do the same thing when it works from iso?
I am using Debian testing. If I install the gnome-desktop-environment then the sound driver defaults to HDA but since I just installed gnome-core (for a more stripped-down version of gnome) the default is the OSS driver. How do I get ALSA to default to the sound driver HDA?
View 1 Replies View RelatedI saw rsyslog is now installed in Debian Lenny instead of syslog. I want to send local iptables log to remote server. I modified the file config /etc/rsyslog.conf like this :
# provides UDP syslog reception
$ModLoad imudp
$UDPServerRun 514
[code]...
I have a Debian server that had only one onboard NIC (1000 Gbps) but now I've added two PCI Intel Pro 1000 NIC's into the system to bump up the total # of NIC's to three. My question now is can I specifically assign or force Debian which interface to configure as ethx? I would always like my onboard NIC to be 'eth0' and the two additional NIC's to be 'eth1' and 'eth2'. For some reason Debian loads the modules at random and sometimes what was my
View 2 Replies View RelatedI have been trying to configure an MTA (sendmail) on a new Debian installation to receive system messages and local network mail. I have no need to fetch or relay mail outside my teeny LAN. The logs on the sending machine told me the mails were refused by the receiving (Debian Lenny) system. So I ran some quick nmap scans. From the sending machine, scanning the Debian machine:
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
From the Debian machine, running 'nmap localhost':
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
111/tcp open rpcbind
587/tcp open submission
From the Debian machine, running 'nmap debian' (this is a virtual machine named debian) :
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
Why the two different results? How do I get the scans to be the same so I can, eventually, configure an MTA?
I've been trying to configure Postgresql in Debian for some time now, in order to install a ERP program in my computer, but when trying to follow the tutorial for the program configuration I end up stalled. Basically its says this:
1) under su, start by finding the postgresql.conf file (it points the location of the file in /var/lib/postgres/data, but it isn't there) and find the line saying 'tcpip_socket' and changing it to "true"
After a little search and help, I found this file in /etc/postgresql/<version>/main/ but the mentioned line is absent, locate it or tell me where to add it in the file? I've read the file front to back and I'm pretty sure the line isn't there.This is, according to the tutorial, to enable the server to connect to a Java program through the JDBC.
2) after editing postgresql.conf, edit pg_hba.conf and add the following line to the end of the file: host all all 127.0.0.1 255.255.255.255 trust
I get stuck after this, because I'm now supposed to restart the server by using '/etc/init.d/postgresql restart', but bash replies that the path is invalid. The program I'm trying to install is hosted here: [URL]. It's a portuguese ERP program.
To exploit the guessnet capability, I have configured my WIFI so that ifplugd can auto connect WIFI after boot.The access point is hidden, and I have provided all the required info in my /etc/network/interfaces file
mapping wlan0
script guessnet-ifupdown
map default: office-wifi
[code]....
After updating my squeeze laptop today I noticed that grub from a few days back fails to --configure.
The dpkg log says
2010-09-09 18:52:45 startup packages configure
2010-09-09 18:52:45 configure grub-pc 1.98+20100804-4 1.98+20100804-4
[code]....
I've created Live Debian USB image and it works well, but if I put an additional USB stick, then it's just read only. Howto configure Live Debian before rebuild an image to get fully USB support, i mean to write into other USB drives?
View 4 Replies View Related