Debian :: Firewall Keeps Blocking Something Called CPQ-Wbem?
Jul 4, 2011
My firewall keeps blocking something called CPQ-Wbem. There have been about 10 instances of this.
A machine on the network is advertising it runs, or looks for machines running, Compaq Insight Manager on TCP/2301. If the machine isn't yours or you haven't enabled Compaq's web-based remote management then silently drop it.
Now as far as i know i do not have a network, just a dsl connection. I also do not own a Compaq computer. So if someone who has some knowledge of this could you explain to me how a " network is advertising it runs, or looks for machines running, Compaq Insight Manager on TCP/2301 " . This would seem to me to be a local network thing not a www thing ?
View 2 Replies
ADVERTISEMENT
Aug 19, 2010
Ok here's my setup :
SuSE 10.0 X86 32 acting as my internet gateway and firewall.
eth0 is my internal interface network 192.168.0.0/24 IP 192.168.0.254 dsl0 is my internet connection and is a single ip PtP connection to my ISP.
My internal network is masquaraded onto the external network.
I run an smtp server on my gateway box that I need to be accessable to both the internal and external networks.
However I want to prevent machines on the internal network from establishing connections to external smtp servers, but still alow them to connect to the smtp server on the gateway to send email.
NOTE I do not want to force attempts to connect to [URL] 25 to be re-directed to my internal server I just want to drop or reject the connection.
The firewall up until now has just been configured through YaST, but am not afraid to edit script files if needed
The reason for doing this it to prevent spambots from being able to send through my isp, I keep my own machines clean but sometimes get asked to disinfect machines for other people (family members etc), where I need to connect to the outside world to get updates/virus defs etc, but don't want them spamming from my network.
View 2 Replies
View Related
Sep 8, 2010
I've setup vnc over ssh tunnelling however the Suse firewall seems to be blocking it. On the local host I have this in ~/.ssh/config:LocalForward localhost:5900 remotehost.com:5900 The problem is that this only works when I either disable the firewall or add an exception for VNC. Both of these actions defeat the whole purpose of ssh tunnelling since they leave my VNC port open to the outside world (very insecure).
View 2 Replies
View Related
Oct 6, 2010
I updated my system with system updates and when i restarted.I couldn't access the internet from my desktop. i got on laptop internet worked just fine..i disabled firestarter and mozilla connected to the internet just fine. I turned firestarter on. and i couldn't reach anything.. What do I have to do to get firestarter to allow me to connect to the internet via firefox
View 3 Replies
View Related
Jan 10, 2010
Printer is connected via USB to server PC running OpenSUSE 11.1 Client PCs are running 11.1, XP, Vista No problem printing from the Windoze machines
Printing is trouble free with the 11.1 client's firewall disabled, but no printer is available with firewall running.
In hopes of diagnosing the problem I figured I'd open everything I could think of until the printer remained available with the firewall running. Then I planned to start removing exceptions one at a time 'til removing one caused the printer to disappear.
I've gone to Yast>Security and Users>Firewall>Allowed Services>External Zone and tried addingSamba Server
NetBIOS server
Samba Client
Samba Server
VNC
[Code]....
View 5 Replies
View Related
Apr 21, 2011
I want configure open source firewall on my office for websites blocking and bandwidth monitoring.
which is the beast free open source firewall..
View 9 Replies
View Related
Feb 4, 2010
When I enable UFW Configuration, in a programme called Firewall Configuration, runs along with the System. Now, I configured it such that it can run along with the Session. Now, Ubuntu is already secure. So, is there any need for additional Firewall like this? (ufw is already present in Ubuntu, and this only Configures it). And, is it required to have it enabled always for keeping the Firefox running? (Because It may consume System Resources). Or, is there any other firewall that consumes less System resources or runs at the Background?
View 1 Replies
View Related
May 27, 2011
I'm trying to build firewall on Debian with 'Firewall Builder'. But it won't let me compile and run unless one interface is set as management. There are two interfaces on my computer: 'eth0' and 'lo'
I don't want to be able to configure firewall remotely, so could I use 'lo' as 'management interface'?
View 1 Replies
View Related
Jul 13, 2011
I feel there's a bit of a misunderstanding going on between C++ and me...My problem is that I have a deque of pointers to a class, and create objects then add them to the deque in a for loop. However, the destructor is called on the object as soon as the loop quits.
Code:
This prints:
Code:
Now, if I change the deque from deque<Test*> to deque<Test> then it works fine - I get:
Code:
However, I can't do this with my actual code, because I am creating a deque of pointers to an abstract class, so it won't let me instantiate the class. (This is all so that I can take advantage of polymorphism, and call functions on a set of similar objects without worrying what type of object I'm dealing with).
So, I suppose my question is: what is the correct way to create that deque of pointers to the abstract class? I don't seem to be barking up the right tree currently.
View 4 Replies
View Related
Mar 23, 2010
For system calls, is blocking or non-blocking default in C? Simple question, just am not seeing the answer super quickly.
View 4 Replies
View Related
Dec 25, 2010
I have a device that is working on modbus protocol andI have written a small program(with block TCP read method ) to read its registers via modbus protocol.my program is working very well but except those times that I unplug the Ethernet cable or turning off the modbus gateway during programs work.at this time my program stops on recv system call (if it reach this system call exacly when I unplug Ethernet cable or turning off the modbus gateway during programs work).I changed my source to work in nonblock TCP method, at this time with the same situation my program does not stop/block on recv system call but after pluging back the Ethernet cable or resuming the connectivity situation back it reads data incorrectly .this is my code:Quote:
#define DEBUG
#include <fcntl.h>
#include <string.h>
[code]...
View 5 Replies
View Related
Feb 7, 2011
I'm getting openbox up and running on squeeze. I performed a netinstall and did a simple apt-get openboxI need to modify a file called ~/.xinitrc, but it does not exist. I read that I can copy one over from /var/x11r6/lib/xinitrc, but the /x11r6/ directory doesn't exist either. I've installed xorg, but the directory still eludes me. A package search yields nothing useful. I am using the SLiM display/login manager, which I believe calls startx, which should theoretically generate the ~/.xinitrc file.
View 2 Replies
View Related
Sep 26, 2010
root@debian:/home/chevy# aptitude full-upgrade
The following packages will be upgraded: libldap-2.4-2 time 2 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 243kB of archives. After unpacking 53.2kB will be freed. Do you want to continue? [Y/n/?]
[code]...
View 2 Replies
View Related
Sep 3, 2011
How would one block an IP range access to a Debian-based Linux system for say 47.1.1.1. - 48.255.255.255? Would it be with the hosts.deny file? If so, how would it be written in the file? Also, would the system require being restarted for the changes to take effect, after writing to the file?
View 14 Replies
View Related
May 14, 2011
The below issue has been solved, the problem wasn't Debian but I simply didn't pay attention that somebody disabled port forwarding *facepalm*
View 5 Replies
View Related
Feb 24, 2011
I'm trying to block outgoing ICMP made by "user". I have user named as "foobar" and he/she shouldnt have rights to use ICMP/ping.ipt_owner works fine when I'm blocking normal TCP/UDP stuff. User can only connect to DNS, WEB and SSH.But still, user can use ICMP
#!/bin/sh
iptables -F
iptables -X
[code]....
View 6 Replies
View Related
Aug 20, 2014
Regularly updated debian testing on a netbook. I normally use wired ethernet, but I am pretty sure that I had wifi (wlan0) working normally a few days ago.
Today, I find that wlan0 has a soft block:
# rfkill list
0: phy0: Wireless LAN
Soft blocked: yes
Hard blocked: no
It seems that the kernel(?) is sending a udev event to set this:
# rfkill event
1408563052.478251: idx 0 type 1 op 0 soft 1 hard 0
# rfkill unblock wlan
works *unless* the wifi button on this laptop is used. Then I get an apparently permanent hard block.
rfkill cannot unblock, and repeated button actions do not clear.
Adding the no_hw_rfkill_switch to the ath7K driver ensures that the wifi button is disabled.
All this is new: I have been using wifi on this netbook for years without problems, so something has changed. I moved to systemd (sigh) maybe a month ago, so perhaps the root problem is a systemd udev bug.
The real problem is knowing where to look or bug report. Is it a recent change in the ath5k driver or kernel? IIRC I checked the driver and there were no recent commits. Likewise rfkill hasn't changed recently. More likely to be something around systemd udev, perhaps, given the mayhem systemd has caused on another machine here. Or perhaps somewhere in the wireless subsystem.
lspci -k includes:
03:00.0 Ethernet controller: Qualcomm Atheros AR242x / AR542x Wireless Network Adapter (PCI-Express) (rev 01)
Subsystem: Foxconn International, Inc. Device e008
Kernel driver in use: ath5k
View 0 Replies
View Related
May 16, 2011
I am currently running Debian 6. I would like to know if there is a way and how i would go about blocking a certain IP range from connecting to my server within a certain port range. Say for example.
i want to block ip range 123.123.123.* from connecting to my server on the ports 33000 - 43000. But, i want to allow them to connect on any other port range, and i want to be able to allow connections from my server to the blocked ip range on those same ports. so, blocking incoming only on the above port range.
using iptables.
View 1 Replies
View Related
Apr 5, 2011
I installed Firestarter firewall on debian Squeeze.Now i note there is a gui available in System->Administration which apparently does not need to be running all the time - its not set up to start on boot.When I boot I notice the boot message has a line saying "Starting Firestarter firewall .... failed"When I am logged in and type "/etc/init.d/firestarter status" as the Firestarter FAQs say, I get"Firestarter is running... ... (warning)"I can run the gui manually and still same message.
View 2 Replies
View Related
Mar 25, 2011
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
View 9 Replies
View Related
May 18, 2010
I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
View 3 Replies
View Related
Nov 19, 2010
A folder called "file:" appears periodically in my home directory.It contains an empty mirror of my home partition's directory structure down to my user folder, under which is an empty Desktop folder. Deleting it causes no obvious problems. My home partition has an XFS file system and I think this is somehow related to that since I've never seen it on an ext3 home partition.
View 9 Replies
View Related
Sep 3, 2014
I have just installed vsftpd on my debain server..I want to know how can I create a new user called mesk as FTP user and set a home page to some folder on my server? I tried this:
Code: Select allhtpasswd -c /etc/vsftpd/passwd mesk but got: cannot create file /etc/vsftpd/passwd.
View 3 Replies
View Related
Aug 23, 2015
I've been trying to make the switch from windows to debian (mate), but I am utterly lost trying to find a replacement for my firewall (Outpost). I have become dependent on features like:
- per application outgoing/incoming TCP/UDP rules
- per application outgoing/incoming IP rules
- per application outgoing/incoming PORT rules
What i seek is a graphical firewall, (or Iptables-) GUI) that will popup a notification that a cirtain program wants to connect to the internet with a cirtain IP over a cirtain PORT and connectiontype.
It seems like FireFlier is what I want, but i was not able to get that running because it is most likely to old and no longer compatible:
(small update on FireFlier, Martin Maurer, the compiling error could be fixed by changing the order of lines 4 and 5 in server/backend.h which would then be
Code: Select all#include <netinet/in.h>
#include <linux/netfilter.h>
And although i'm still to clueless to get the rest working, [URL]....
Also from what I understand is that I should be able to achieve this with AppArmor or Selinux, but I was unable to do so. For the rest, all I could find where firewalls like Douane, that are just not powerfull enough [URL]...
View 9 Replies
View Related
Mar 7, 2011
how can i setup a firewall in my system
View 3 Replies
View Related
May 9, 2011
Can we use iptables as firewall instead of Juniper firewall
View 2 Replies
View Related
Jul 24, 2011
I hadn't upgraded my multimedia Squeeze box in a month, so I ran a "apt-get dist-upgrade"; I think henceforth I'll stick to "apt-get upgrade" most of the time. Anywho, I got to the point that restarting PAM required me to restart KDM (I haven't seen that snafu on Ubuntu, it seems like there ought to be a way to upgrade without restarting X and running "dpkg --configure -a" and then continuing the upgrade). Anyway, after restarting my dist-upgrade I got part way through and got an error message. The gist of it seems to be this:
Building dependency tree
Reading state information... Done
You might want to run 'apt-get -f install' to correct these.
The following packages have unmet dependencies:
xserver-xorg-core : Recommends: libgl1-mesa-dri (>= 7.10.2-4) but 7.10.2-3 is installed
code....
So apt is wedged and it seems like I have a partial upgrade, various little things are not working in Gnome, KDE & XFCE (like icons, plasma seems to be somewhat borked). Although I'm using the radeon driver this seems to be some variant of this bug from mid June: url
I'm not having the issue with my laptop (Intel) or desktop, both testing, although both of the machines do have issues, particularly the desktop (serves me right for buying newish hardware). But this box is pretty bog-standard.01:05.0 VGA compatible controller: ATI Technologies Inc RS880 [Radeon HD 4290]
Maybe I should just strip off xserver-xorg* and reinstall? Or I can wait libgl1-mesa-dri sorts itself out, but it seems like it has been causing problems for over a month.
View 4 Replies
View Related
Jul 17, 2010
We have a setup of around 10 computers with 1 linux server... We want to convert it into a centralized system where firewall services are activated from the linux server and certain websites are restricted from acess for the workstations.. Are there any good softwares for this.. open source preferably... I'm using debian already for the web server and file server already....
View 7 Replies
View Related
Apr 5, 2011
I am running squeeze 6 on amd64 i like to know if there is guide how to setup a good firewall for dummies like me
View 7 Replies
View Related
May 13, 2011
I installed the ferm firewall with aptitude in the debian squeeze, the ferm init script is installed to the /etc/init.d and it's enabled in the /etc/default/ferm:
# configuration for /etc/init.d/ferm
# Enable the ferm init script? (i.e. run on bootup)
ENABLED=yes
View 3 Replies
View Related
