Debian :: Iptables Cannot Save The Configuration?
Apr 28, 2011I am configuring the iptables in the debain squeeze and then running the: iptables-save
View 4 Replies
ADVERTISEMENT
General :: Save Iptables When Iptables-save Doesn't Exist?
Apr 14, 2011I'm working on a Soekris net4801 that is running an unknown distro of Linux. The kernel is 2.4.29, and iptables is v1.3.4.
I can't work out how to save the iptables. I searched the whole system for files/folders containing the name "iptables" and got 3 results:
/user/local/lib/iptables
/sbin/iptables
/lib/iptables
I've tried iptables save, iptables-save and iptables save active.
"iptables save" and "iptables save active" give me an invalid argument error. "iptables-save" isn't a valid command. "iptables --help" gives me a list of valid switches, none of which have to do with saving.
how I can save the iptables?
Fedora Servers :: Unable To Restore My Iptables From Iptables-save After Upgrading
Nov 26, 2010I am unable to restore my iptables from iptables-save after upgrading Fedora. I cannot get iptables-restore to work, and I have resorted to entering rules manually using the GUI.
View 2 Replies View RelatedSoftware :: Iptables-save Can't Save Settings?
Jan 29, 2009Config a CentOS iptables.I issued some iptables rules.the rules were effective at once.Then, I came with a "iptables-save", but the "/etc/sysconfig/iptables" file hasn't been updated, it still loads the defaults rules with CentOS after reboot.
View 4 Replies View RelatedDebian Configuration :: Save To Install Kernel 2.6.35.2 On Debian Lenny 5.0.5 Or Stick With Automatic Updates
Aug 20, 2010is it save to install linux kernel 2.6.35.2 on Debian Lenny 5.0.5 or stick with automatic updates...
View 14 Replies View RelatedDebian :: Can't Save Network Configuration
Jan 18, 2010I'm opening up Network and it asks me for the root password. I enter it and the program comes up. I enter a static address for both eth0 and eth1.
I don't see a Save button. Eventually I get out of the configuration tool. The next time I run the tool, my static addresses have not been saved.
Debian Configuration :: Bad Argument '#' In Iptables
Jul 11, 2011I follow this instructions but after iptables-restore < /etc/iptables.test.rules I see this error # iptables-restore < /etc/iptables.test.rules Bad argument `#' Error occurred at line: 3 Try `iptables-restore -h' or 'iptables-restore --help' for more information. The line 3 is the same as the link - # Allows all loopback (lo0) traffic and drop all traffic to 127/8 that doesn't use lo0
View 3 Replies View RelatedDebian Configuration :: Iptables Forwarding For Tomcat?
Nov 10, 2010I've been trying to forward some ports using iptables for some time now, but still haven't figured out how to get it to work..What i'm trying to accomplish is to forward all traffic from port 80 to port 8080, and all traffic from port 443 to port 8443, this because i would like to run tomcat as a non-root user, and the original ports can only be used as root.. I've currently setup my iptables like this:
# Generated by iptables-save v1.4.2 on Wed Nov 10 16:44:45 2010
*nat
:PREROUTING ACCEPT [39350:6120333]
[code].....
Debian Configuration :: Iptables Blocks FTP Connections
Jul 8, 2011For some reason my FTP packets are blocked by iptables even though I thought I allowed them through
My syslog errors are along this line:
And my iptables ruleset:
Networking :: Iptables Configuration On Debian Dmz Host?
Jul 6, 2010I am trying to set up a DMZ host - that is, one multifunctional PC between the WAN and the LAN. I've started with a basic router, and expanding upon that as the need arises. I am currently trying to gain access (from the WAN) to a website hosted on one of the servers in the LAN, but I am having trouble accessing the host from the WAN; I think my iptables configuration may be too restrictive. On the DMZ host, I'm using Debian (Etch). I have setup dhcp3-server, a script to configure iptables and pound (reverse-proxy). The (virtual) machine has 4 network cards: eth0, eth1, eth2, eth3; eth0 is the WAN, eth1 through eth3 serve 3 different virtual LANs.
All machines in the LAN (except one windows 2008 server - I might want to address that problem later) get their IP adresses correctly via dhcp from the DMZ host. All machines on the LAN can access the internet (including the 2008 server if I configure it manually) as they should. If I access http://localhost on the DMZ host, pound reports "The service is not available. Please try again later." - as it should.
I can ping the DMZ host from the WAN on 10.0.0.79 However, if I try to access the DMZ host from the WAN (http://10.0.0.79) I get "Unable to connect" from firefox. I'm sure this is not a pound problem, so I think it's in the iptables, or maybe I should be installing some extra software that I'm unaware of.
[code]....
Debian Multimedia :: - Save Configuration Panel Of The Xfce4 ?
Sep 29, 2010Original tittle, edited for add the tag [SOLVED] on subject How can I save the configuration of panel of the xfce4 ?
I have a pretty panel configured on my xfce4 (debian lenny). How can I save the configuration of my panel ? I'm afraid to lost my configuration in some situation of error.
Debian Configuration :: IPTables Output Block Not Local
Sep 19, 2015I try to create some rules to detect an outgoing traffic from my debian jessie that is not from my IP or loop.
#!/bin/bash
/sbin/iptables -N C_OUT_N_LOCAL
/sbin/iptables -N C_OUT_N_LOCAL_LO
/sbin/iptables -A C_OUT_N_LOCAL -m limit --limit 2/min -j LOG --log-prefix "PK: output not local : " --log-level 4
LO_IP="127.0.0.1"
MY_IP="192.168.0.4"
/sbin/iptables -I OUTPUT -p ALL ! -s $LO_IP -j C_OUT_N_LOCAL_LO
/sbin/iptables -A C_OUT_N_LOCAL_LO -p ALL ! -s $MY_IP -j C_OUT_N_LOCAL
Debian Configuration :: Lenny Not Loading Iptables Rules
Dec 30, 2010I'm having some trouble with the configuration of the iptables. I want to setup a network server to serve as Fail Over (for my 2 ISPs), DHCP and DNS. I have 3 network cards, 2 connected to ISP's routers and 1 that serves as UPLINK for my switch.
I want to add some Iptables rules so I can achieve what I want to do. The problem is that the rules I try to use, they have to effect.... they don't load, here are the rules I am trying to add:
#iptables --table nat --append POSTROUTING --out-interface eth1 -j MASQUERADE
#iptables --table nat --append POSTROUTING --out-interface eth2 -j MASQUERADE
#iptables --table nat --append POSTROUTING --out-interface eth2 -j SNAT --to EXTIP
When I try to check to see if it loads, with the command:
#iptables -L
It returns empty
Debian Configuration :: Reinstall Lenny, Save /home Directory?
Jun 29, 2010I recently reinstalled Lenny and I am attempting to save my /home directory. I used the graphical install and when it came to the part about partitioning, I created a new /home partition "hdb1" and told the installer to ignore my old /home partition "/dev/hda9".Following the completion of the install, I logged in and changed my /etc/fstab so that /home --> my old /home partition "/dev/hda9". I then mounted the old partition to /home and rebooted the system. Now, when I go to my /home directory >> properties, I can see that the files I had are on the drive (2GB are used) --- but --- I cannot actually see the files??
View 1 Replies View RelatedDebian Configuration :: OpenVPN And IPTables - No Local Hostnames Accessible
Feb 7, 2016I managed to set up an openvpn server, ip-forwarding and a nat iptable rule for that.
Almost everything works as expected, but my problem is:
Smartphone -> VPN -> Internet ==> works (by ip and hostname)
Smartphone -> VPN -> machine in my local network by IP ==> works
Smartphone -> VPN -> machine in my local network by its hostname => DOES NOT WORK
Machine w/ VPN server -> ping to machine in local network by ip or hostname => works
So, i wonder why i cant access a local machine through the vpn by its hostname. I guess I'm missing a forwarding rule??
iptables dump:
# Generated by iptables-save v1.4.21 on Sun Feb 7 20:56:52 2016
*nat
:PREROUTING ACCEPT [786:59064]
:INPUT ACCEPT [728:53047]
:OUTPUT ACCEPT [19:1487]
:POSTROUTING ACCEPT [20:1576]
-A POSTROUTING -s 10.8.0.0/24 -j MASQUERADE
COMMIT
# Completed on Sun Feb 7 20:56:52 2016
Debian Configuration :: IPTABLES Protocol To Reject All Incoming Ssh Traffic
Apr 4, 2010a good IPTABLES protocol to reject all incoming ssh trafiic except for a single IP or IP range?
View 4 Replies View RelatedDebian Configuration :: Setting IPTables Default Forward Policy?
May 3, 2010I'm intending to replace my current router (486DX2 w/16MB running FREESCO which has been faithfully working 24/7 for well over a decade) with a debian box with a bit more grunt and newer features. I'm currently setting up my iptables ruleset and am after a bit of advice re the FORWARD policy. A few example rulesets I have found set the default policy to DROP and the have two lines for each port forward, one to allow the traffic and one to direct the incoming packets to the correct machine.
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j DNAT --to-destination 10.0.100.10:25
iptables -A FORWARD -i eth1 -p tcp --dport 25 -o eth0 -d 10.0.100.10 -m conntrack --ctstate NEW -j ACCEPT
I'm thinking of setting the default policy to ACCEPT to cut down on typing as my default INPUT policy is DROP and unless there is a valid FORWARD rule for a particular port, the packets aren't going anywhere anyway. Or have I misunderstood something. My googling returned heaps of example scripts & not much intelligent commentary. Alternatively, what do you all use to configure & maintain your debian gateways; hand rolled iptables rules, or any toolset recommendations?
Debian Configuration :: How To Restore Iptables To Default Installation Values
May 9, 2010After resetting a pc running lenny I get iptables errors at boot ("resource temporarily unavailable", "bad rule" etc). "setting up firewall" (Guarddog) is not followed by any errors and the firewall apparently operates ok.How can I restore my iptables to the default installation values?
View 2 Replies View RelatedDebian Configuration :: IPTables - Local Host Cannot Get Returning Traffic
Sep 20, 2010I have a strange iptables issues. I have just built a new Debian install and starting adding some real basic rules (see below) the problem seems to be that the localhost itself can't get any returning traffic. That is, it seems to be allowed outgoing traffic but not the connected, returning traffic. Ordinarily allowing Established Connections would resolve this, see the rule below, but it hasn't. Why this doesn't work. Removing the last DROP in the INPUT chains obviously makes the traffic work!
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -j ACCEPT -p tcp --dport 22
iptables -A INPUT -j ACCEPT -s x.x.x.x
iptables -A INPUT -j ACCEPT -s x.x.x.x
iptables -A INPUT -j ACCEPT -s x.x.x.x -p tcp --dport 80
iptables -A INPUT -j ACCEPT -s x.x.x.x -p tcp --dport 8080
iptables -I INPUT 1 -i lo -j ACCEPT
iptables -A INPUT -j DROP
Debian Configuration :: IPTables Logging Rules Dropping WiFi Connection
Dec 1, 2015I'm trying to use these cookie cutter rules that I found. But every time I use them, after a few seconds my wifi connection goes dead. The exception was the first time I used then. Which lasted me a couple of minutes.
By dead I mean I can no longer open a webpage or ping google.
iptables -N LOGGING
iptables -A INPUT -j LOGGING
iptables -A OUTPUT -j LOGGING
iptables -A LOGGING -m limit --limit 2/min -j LOG --log-prefix "IPTables-Dropped: " --log-level 4
iptables -A LOGGING -j DROP
Ubuntu :: Save Configuration As Default?
Aug 20, 2011I've customized my ubuntu setup using many themes and icon packs and now have it just the way I like it but every time I create a new user account it resets to the default interface. Is there any way to save the current configuration I have (theme, icons etc.) as default?
View 3 Replies View RelatedOpenSUSE Hardware :: Can't Save ALSA Configuration
May 10, 2011I have just installed OpenSuse 11.4 with XFCE environment on my Acer Aspire 5738Z.
Everytime I boot, I need to configure manually the "capture device" with Alsamixer to change it from "micro" to "internal micro".
I tried to save the settings using alsactl store/restore as I do with Ubuntu, but it doesn't work. Every time I restart my computer, the capture is on "micro" again.
how to save the settings permanently ?
Ubuntu :: Save Configuration / Setup For Later Install?
Mar 23, 2010I run ubuntu 9.10 and i've set up my drivers/music player/themes/browser etc just the way i like them. However I now want to install XP and dual-boot. My hard drive is not partitoned, so I want to ask if there is a way to save my setup to use after installing XP.
View 5 Replies View RelatedUbuntu Networking :: Getting Iptables Two Nic Configuration?
Jul 27, 2010i have a question regarding iptables.i have a server running ubuntu server 10.04 with 2 nic's, i want to use it to filter the internet trafic of the people in my network ussing dansguardian and squid. they both work fine.the only problem is how to get iptables to deal with this the right way.
eth0 = LAN
eth1 = internet
Server :: Iptables Configuration For UDP Flood?
Feb 21, 2011Banning the IP is the best way to protect your server but of course, attacker can use another IP and use a lot of your bandwidth until you find and ban the IP. So the only thing we can do to prevent this is, block the packets my iptables length module.
I check the bandwidth usage through "iftop". Incoming traffic is always like 120kb/second and that has to be that way because the traffic enters my server no doubt that it gets dropped by iptables later.
The actual thing what the Ddos ( UDP Flood ) does it that it causes an outbound traffic that eats up like 5mb/second easily and my servers lag. Only if the IP is banned, the outbound traffic comes to an end.
Now I want to use the length module to block it but it just won't work. I've tried the following and shuffled them too but no help.
Code:
iptables -I INPUT -p udp -m length --length 15 -j DROP
iptables -A INPUT -p udp -m length --length 15 -j DROP
Packet length is 15 according to tcpdump:
Code:
19:49:34.504864 IP fms-02.colt.net.belgamanagement.be.56413 > nyc.v1servers.com.20100: UDP, length 15
OpenSUSE Multimedia :: Mplayer Configuration - Save URLs
Jan 3, 2010I'm not able to reproduce a configuration which I had before.
The plot: openSUSE 11.1 i586, seamonkey 1.1.18, MPlayer dev-SVN-r30099-4.3-openSUSE Linux 11.1 (i686)-Packman = MPlayer-1.0rc2_r30099-1.pm.1.1, mplayerplug-in-3.55+cvs20090923-0.pm.2.2
My old system which died in a catastrophic hardware failure did write the URLs of all movies played with mplayerplug-in to a file located at $HOME/Movies/playlist.
How can I configure the new system to do it again?
Networking :: Save Routing Information To A Configuration File?
Mar 9, 2011All routing settings made with the ip tool (route command) are lost when the redhat server reboots.How to save routing information to a configuration file?
View 2 Replies View RelatedUbuntu :: IPTables Configuration Just Allow Outgoing To HTTP / DNS
Nov 18, 2010Rather new to Ubuntu. I was wondering for advice on a basic iptables configuration blocking all incoming/forward and just allowing outgoing to http(s) and dns of course.
View 5 Replies View RelatedNetworking :: Dhcp Offer Get Through Iptables Configuration?
Jun 5, 2011eth0 is configured through a dhcp server connected directly to it. [URL]...the answer of the server is a UDP to 255.255.255.255. Please tell me how can it pass through this iptables configuration, because it does.
Code:
iptables -nvL INPUT
(policy DROP)
3281 201K ACCEPT all -- eth1 * 192.168.69.0/24 0.0.0.0/0
0 0 ACCEPT all -- lo * 127.0.0.1 0.0.0.0/0
0 0 ACCEPT all -- lo * 192.168.69.1 0.0.0.0/0
0 0 ACCEPT all -- lo * 93.114.xx.xx 0.0.0.0/0
[Code]...
Security :: Best IPtables Configuration For Bind DNS Server?
Dec 23, 2010What is the best IPtables configuration for bind DNS server.
View 3 Replies View Related