Debian :: UFW Failing To Deny Incoming Pings
Feb 3, 2016
I'm unable to get the "Uncomplicated Firewall" (UFW) to deny incoming pings. I've set it to deny incoming. Yet when I ping it, it responds.I'm using Debian 8.2 jessie KDE fresh/clean install with all updates.Below is the terminal output from a simple test (I've added an extra line feed between the commands for clarity):On a Debian 8.2 computer -- I install UFW, enable it, check its status (deny incoming), and get the Ethernet address:
Code: Select allroot@Computer:/home/user# apt-get install ufw                                                      Â
.... (long output -- no errors or warnings)
root@Computer:/home/user# ufw enable
Firewall is active and enabled on system startup
[code]...
The Debian computer with UFW active is responding to the pings, when it should be ignoring them.Rebooting the Debian computer doesn't fix the problem.This setup is very simple. I'm using all UFW defaults.This is a new Debian 8.2 install (clean) with all updates.
View 3 Replies
ADVERTISEMENT
Aug 16, 2010
I have just installed a testing net install of squeeze on my laptop and I'm having a few problems with my wired connection.
When i try to ping google.co.uk there is a large delay between each result even through the actual ping takes ~30ms. It takes about 5 seconds or more between each ping.
If i use ping -n it works fine. Does anyone know why this is happening?
View 3 Replies
View Related
Sep 15, 2010
I am running Debian Lenny and just upgraded via "apt-get upgrade" yesterday and all appears to be fine, except I noticed that when I ping something from a terminal window, it only displays successful pings and does not show the failed ones. When the pings fail, I have to "Ctrl-C" to see the results and cannot see them in real-time. It's not a huge problem, but I'd still like to be able to see immediate results even when pings fail.
Example is below:
(Username and host name changed to protect the innocent; or due to being overly paranoid, whichever).
Failed -
View 6 Replies
View Related
Oct 30, 2010
as we know in windows xp drive and folder permissions, we perform (folder-right click-properties-security tab-we check, group or user and assign ALLOW or DENY access to the folders) In the same way i want to DENY access to my windows driver sda1 & sda2 from the Debian OS. my system is being used by 3 users: user1, user2 & user3. All can access to all Volumes, so I want to Deny the users 2 & 3 from accessing my windows driver and folders. BUT i alone user 1 should have permission to access them. How do i change that in Debian 5.5? Allow/Deny Permissions to Volumes.
View 3 Replies
View Related
Mar 2, 2011
I have recently started working on our server. My knowledge about *nix systems is very limited, so I turn to the oh-so-friendly internet community for help.The server is running Debian Etch, postfix, courier and some other stuff. And suddenly out of the blue the emails from the internet are not being received. Emails being sent internally are being received and everyone can browse the internet.Host or domain name not found. Name service error for na$for name=xxx.xxx.xx.xx.list.dsbl.org type=A: Host not found, try again.Does anyone have any experience with something like this? I would love to get this thing fixed.
View 6 Replies
View Related
Mar 5, 2011
I'm using Debian 6 to host a website (with apache2) and a game server. But because of attacks to my server, my hosting company have now set it offline.
These are the two logs that they provided (I replaced all IPs):
Direction IN
Internal ***.***.***.***
[code]....
View 4 Replies
View Related
Aug 25, 2010
I am planning an issue tracking system that I will build in Django and Python and host on a Debian server. Being an issue tracking system it will have to send and receive emails. I can easily configure the send mail functionality using python inbuilt functions. But is there a way to create new content from an incoming email?
e.g. scenario > User sends email to support@university.edu and the issue management system picks up that email (somehow) and creates a new issue based on contents of the email (preferably in real time but some delay is acceptable).
I have looked at postfix and sendmail but neither allows you create new content (issue) from an incoming email. Any thoughts?
View 1 Replies
View Related
Apr 4, 2010
a good IPTABLES protocol to reject all incoming ssh trafiic except for a single IP or IP range?
View 4 Replies
View Related
Feb 11, 2011
I am trying to install a printer driver on an amd64 that was designed for 32bit only (of course)Squeeze automaticallty installed the ia32_libs package, but it may not be enough.How can I tell which library is failing?I do get an error on libcupsimage.so.2 but it does exist in /usr/lib/libcupsimage.so.2
View 4 Replies
View Related
Oct 17, 2010
How i know who is pinging me or trying?
View 1 Replies
View Related
Jul 30, 2011
I've had a problem trying to hibernate, sleep doesn't work either, when I try it starts to hibernate but then the screen flashes and when I move the mouse I'm returned to my current X session. I see the following in dmesg
PM: Device usb10 failed to freeze: error -2
[ 682.481822] sd 0:0:0:0: [sda] Starting disk
[ 682.798713] Restarting tasks ... done.
Apparently this notation points to a USB root hub, I have a USB 3 capable MB and I saw few mailing lists suggesting this was a bug but I can't find a fix, anyone out there resolved this?
cat /proc/version: Linux version 2.6.32-5-amd64 (Debian 2.6.32-35) (dannf@debian.org) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 SMP
View 3 Replies
View Related
Jan 7, 2011
I have an asus router running tomato firmware. Through the webGUI I have set up an openVPN server as per the tomato guides. I am using the network manager plug-in in ubuntu 10.04 to connect as a client to the tomato openVPN. All of my certificates seem to be set up and working correctly.
I am able to successfully connect to the openVPN server using the ubuntu client but after that I get nothing. On the client side I am unable to ping the router, any ip addresses inside my private network, the virtual network ip, and web browsing (client) no longer works.
Also, when connected I am unable to ping the client from the private network.
Before connecting
Code:
chris@ChrisLaptop:~$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:1e:68:90:5e:e9
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
[Code]....
View 1 Replies
View Related
May 6, 2010
I am trying to make a backup copy of a DVD without success. k3b simply stays there silent doing nothing and I have to terminate the application. Is there a way to make DVD copies if one needs to?EDIT:I am using the home partition for caching as it is the biggest one on the disks; /tmp is too small.
View 5 Replies
View Related
Feb 11, 2016
Every time I try to create a bootable USB on my sid boxes, it comes out corrupt. I'm trying to use a multi-arch netinst iso so I can back up my tablet. Anyway, I use
[code]
# cp debian-8.3.0-amd64-i386-netinst.iso /dev/sdf
[code]
And it won't boot, so I checked the drive with gparted on my desktop, and get some errors about invalid block sizes and corrupt partitions. When I try fdisk, it lists an EFI partition as I would expect, and then another partition with the right size, but its listed as type empty. I also get some invalid size errors there. This happens with an older iso I have successfully used in the past. When I run fdisk on the ISO file, I get the same errors as the USB drive. Here's the output
[code]
daniel@frakenstein:~/Downloads$ sudo fdisk -l ./debian-8.3.0-amd64-i386-netinst.iso
Disk ./debian-8.3.0-amd64-i386-netinst.iso: 556 MiB, 583008256 bytes, 1138688 sectors
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: dos
[Code]...
I think my issue is with the message about 2048 vs 512 byte block sizes. I tried setting up partitions on my drive and just copying data to them from the iso. This makes the BIOS recognize the USB disk and it tries to run the bootloader, but fails since the symlinks are messed up copying that way. I've tried a few different boxes (all running sid) and I get the same results on all of them.
View 6 Replies
View Related
Apr 2, 2011
I just installed Debian Squeeze onto my desktop and when i try to access it I get a dialog displaying:Error mounting: mount exited with exit code 1: helper failed with:Error opening '/dev/sdb1': Permission deniedFailed to mount '/dev/sdb1': Permission deniedPlease check '/dev/sdb1' and the ntfs-3g binary permissions,and the mounting user ID. More explanation is provided at[URL]
View 3 Replies
View Related
Jan 16, 2011
Decided to swap from ubuntu to full blown debian - and glad I did - just feels right using debian to me. Anyways. On my desktop im trying to edit my "Applications" menu" so that it includes "Programming" and "Other" sections of the menu. So i righclick "Applications" goto "Edit Menus" and try to checkbox the "Programming" & "Other" menu options. Alas as soon as I check them - the tick dissapears again - and there is no way for me to edit the menu. Its my system I have full access.
View 4 Replies
View Related
Sep 13, 2010
I get the following errors when installing samba.
slutb0x:/etc/samba# aptitude install samba-dbg
The following NEW packages will be installed:
samba{a} samba-dbg
0 packages upgraded, 2 newly installed, 0 to remove and 1 not upgraded.Need to get 49.2MB/55.5MB of archives. After unpacking 149MB will be used.Do you want to continue?
[code]...
View 5 Replies
View Related
May 13, 2011
I'm having troubles with brasero 2.30.3 running on sid, it fails to burn iso. I've tried 3 cds and still getting error:
View 3 Replies
View Related
Feb 4, 2011
I'm running Debian 6.0 with the 2.6.32-5-686-bigmem kernel. I also have just moved to a new mobo which has an 82801JI based sound card. When the snd-hda-intel modules loads I get the following error:
[14966.475400] HDA Intel 0000:00:1b.0: PCI INT A -> GSI 22 (level, low) -> IRQ 22
[14966.475445] HDA Intel 0000:00:1b.0: setting latency timer to 64
[14966.504013] hda-intel: no codecs found!
[code]....
View 1 Replies
View Related
Feb 14, 2011
I've got an LG CD/DVD player/writer in my desktop, and it's suddenly stopped working. No error messages at all, but it doesn't acknowledge any discs any more, whether they're CDs or DVDs or CDRWs or anything. How can I diagnose what's wrong? It's only 1.5 years old so I wouldn't expect it to be a hardware problem really, but I can't think of anything else. At first I thought I'd broken something with Squeeze, but I ran a live system from USB stick and it also can't read any discs at all. Also I tried a bootable DVD and couldn't get that to boot either, so I'm pretty confident it's not a software problem. It's always worked fine before and hasn't had any shocks or moves or anything (that I know of). The green light flashes when I close the drawer, just flashes a few times and then stops. There's nothing in /var/log/messages. Are there any tricks to figure out what might be wrong or is it looking like I need to buy a replacement drive?
View 4 Replies
View Related
Mar 8, 2010
Using ant with
Code: Select all<script language="jython" manager="auto">
is failing
BUILD FAILED
/root/dawndusk/times_build.xml:25: Unable to create javax script engine for jython
at org.apache.tools.ant.util.optional.JavaxScriptRunner.evaluateScript(JavaxScriptRunner.java:86)
at org.apache.tools.ant.util.optional.JavaxScriptRunner.executeScript(JavaxScriptRunner.java:69)
I have ant-optional installed. Do I need to register specific languages?
Apache Ant version 1.8.0 compiled on February 20 2010
Detected Java version: 1.6 in: /usr/lib/jvm/java-6-openjdk/jre
View 1 Replies
View Related
Aug 6, 2010
I am having (seemingly) random trouble with my wired network ever since I installed Lucid. I have no problem getting an ip address from dhcp. However, randomly the computer will boot and although I have an ip address I do not receive any responses for pings on the network nor can I browse the web. If I sudo /etc/init.d/networking restart a few times (or reboot) it will start working. However, restarting the networking services (as mentioned above) again will cause me to no longer receive responses for pings or browse the web.
Furthermore, I have never been able to successfully ping if I manually set an ip address. I have un-installed network manager and I am using /etc/network/interfaces to configure the network. Using Lucid Lynx 64bit on a Dell Precision. I have pasted below the output of a few working commands. When I switch between static ip and dhcp I am commenting/uncommenting the lines shown in /etc/network/interfaces.
sudo lshw -c network
*-network
description: Ethernet interface
product: NetXtreme BCM5754 Gigabit Ethernet PCI Express
vendor: Broadcom Corporation
physical id: 0
bus info: pci@0000:08:00.0
logical name: eth0
version: 02
serial: 00:23:ae:99:4a:85
size: 100MB/s
capacity: 1GB/s
width: 64 bits
clock: 33MHz
capabilities: pm vpd msi pciexpress bus_master cap_list ethernet physical tp 10bt 10bt-fd 100bt 100bt-fd 1000bt 1000bt-fd autonegotiation
configuration: autonegotiation=on broadcast=yes driver=tg3 driverversion=3.102 duplex=full firmware=5754-v3.24 ip=10.200.147.153 latency=0 link=yes multicast=yes port=twisted pair speed=100MB/s
resources: irq:78 memory:f7cf0000-f7cfffff
cat /etc/network/interfaces
auto lo
iface lo inet loopback
address 127.0.0.1
auto eth0
#iface eth0 inet static
#address 10.200.147.56
#netmask 255.255.255.0
#broadcast 10.200.147.255
#gateway 10.200.147.1
iface eth0 inet dhcp
View 8 Replies
View Related
Feb 15, 2011
I need to check the output of a name resolution, but I configured the firewall of the destination to avoid answering to pings.
Is there any other way to get a name's IP without using ping? (I mean something like $resolv name.com)
View 2 Replies
View Related
Mar 9, 2011
I've been trying to use MySQL in Ubuntu but I've been having some connection issues and in trying to troubleshoot that, I observed this strange behavior with pings in Ubuntu Desktops inside our network.
- All Ubuntu Servers we have (10.10 and 8.04) behave as expected
- All Windows machines behave as expected
- All 5 Ubuntu Desktops we have, (10.10 and 9.10) exhibit the following unexpected behavior:
If they have a local ip addresses and are connected within the internal network, either to a switch or directly to a router, pings take much longer to be sent. It's not a higher lag, it's the time between each ping that increases. I have to wait for around 5 seconds for each ping, but the time in the ping reply is less than 100ms, also they're all in order so I assume it's the system delaying the sending of each ping.
If I plug a USB 3G modem directly then it works as expected again (~1 sec between each ping sent). Is this an intended feature, that depends on the network environment, or is this something I should look into more closely?
View 1 Replies
View Related
May 18, 2010
Last nigth I upgrade my system to squeeze and it whent well except for grub-pc and udev. If i try to upgrade now udev will not install do to problems with the kernel version and grub-pc can't seem to find the boot image.
[Code].....
View 3 Replies
View Related
Aug 30, 2010
I have been using Debian for 3 or 4 years, I have never used LXDE before. After several attempts and searches through google, I succeeded to change the screen resolution to 1024x768 but LXDE is retaining this resolution for only one session: I have to change the resolution every time I use LXDE.
This is what I have in ~/.config
edbarx@edbarx-pc:~/.config$ ls -l
total 72
drwxr-xr-x 2 edbarx edbarx 4096 Mar 19 14:41 akonadi
[code]....
View 5 Replies
View Related
Mar 22, 2011
I have trouble setting up NFS on Debian Squeeze (2.6.32-5-kirkwood armv5tel GNU/Linux) running on a Sheevaplug. After some digging and googling I found that the NFS server is (probably) not properly installed.
no rules in iptables or hosts.allow or hosts.deny. Fresh OS install.
apt-get install --reinstall nfs-kernel-server
generates this output:
Setting up nfs-kernel-server (1:1.2.2-4) ...
Stopping NFS kernel daemon: mountd nfsd.
Unexporting directories for NFS kernel daemon....
Exporting directories for NFS kernel daemon....
[Code]....
It could be related to this bug [URL] but I wonder if the fix goes to the arm-branch as well?
I have never had any trouble setting up NFS before.
View 2 Replies
View Related
Aug 8, 2011
I am trying to create a local debian repo for 3rd party apps and my own deb's. I have done the following: dpkg-scanpackages debian | gzip -9c> debian/Packages.gz Which did create a file called Packages.gz in the directory However, when I do apt-get update on a client machine I get the following error: W: Failed to fetch [URL] Could not connect to 10.1.1.10:8080 (10.1.1.10). - connect (111: Connection refused) W: Failed to fetch [URL] Unable to connect to 10.1.1.10:8080: W: Some index files failed to download, they have been ignored, or old ones used instead.
View 1 Replies
View Related
Jan 9, 2010
I used gparted in PartedMagic to resize my /home partition from 360GB to 160GB, and create a new FAT32 partition out of the remaining 200GB.My /home directory only had about 9GB worth of files in it and as far as I can tell there was no reason for any of them to be anywhere near the portion which was deleted. So the resizing and creating the new partition seemed to go fine. Then I rebooted and it got stuck while booting into Debian.
I tried checking my BIOS for an IOMMU option but there doesn't seem to be one at all. I also only have 4GB of RAM so I don't know why it thinks I have 4.75GB.
View 9 Replies
View Related
Jun 11, 2010
I've done the ordinary sources.list update (lenny to squeeze) and Code: sudo apt-get update sudo apt-get install dpkg apt aptitude.sudo aptitude full-upgrade However, udev failed to install, and I used..Code: touch /etc/udev/kernel-upgrade and did full-upgrade again. Everything was going fine, I went through several package configurations and suddenly, after 30-40 minutes of "Unpacking Setting up." I just heard two system beeps and got an error similar to a kernel panic. The SYSRQs did nothing. Did a hard reboot.I got two kernels in GRUB now. + the GRUB2 chainloading option. Used this one and got Code: Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block It's all the same with the 2.6.32-5-686 kernel kernel panic. Using the older kernel didn't fail on the boot up, but showed many UDEV related errors and logging in was impossible - all I get were segmentation faults. Forgot to mention it - my FS is Reiserfs
View 7 Replies
View Related
