On Fedora 12 each reboot seem to reset my custom iptables rules I have manually added to/etc/sysconfig/iptables. My change are in /etc/sysconfig/iptables.old so obviously some process is removing them.
View 4 Replies
can i actually edit /etc/sysconfig/iptables and create/delete rules inside that file?will it work? i just find using the IPTABLES -A or -D command a hassle
View 3 Replies View RelatedI just installed Fedora 13 on a new Dell XPS desktop and some of the networking files are not created/missing. The computer has Broadcom Gigabit wired card and Asus PCE-N13 wireless card. When I type lspci, I see that Network conroller: RaLink RT2860 and Ethernet controller: Broadcom BCM57780 Gigabit Ethernet. So, somehow they are being detected by the OS, but I am not sure if the drivers are installed or why some of the network files are missng.
View 1 Replies View RelatedI'm installing Webmin on a older DNS server here at work. Can't connect to port 10000 so I checked the server ports via NMAP, looked like the port is closed. I tried to run /etc/sysconfig/iptables but this returned a "permission denied" message. I'm logged in as root, not sure what I'm missing, maybe I'm running the command incorrectly?
View 4 Replies View RelatedWhat a nuisance after upgrading from Fedora 12 to Fedora 13 the terminal initialisation and the running of agetty agetty doesn't work any more. Same for printer configurations. Apparently this should now be done in /etc/sysconfig/init but where is the documentation? how to use the new /etc/sysconfig/init to do what the event.d scripts used to do.
View 2 Replies View RelatedEither the documentation on this -- or the eyes and brain I'm reading it with -- is/are clear as mud.This has been busted since I tried to install it a few months ago. <....>In short, what entries and parameters (and in what syntax) do I need to park in: /etc/sysconfig/hddtemp that the silly thing won't completely ignore?
View 14 Replies View RelatedI have just done the upgrade to CentOS 5.4, but it seems that the iptables library libipt_time.so is no longer provided in /lib/iptables in the distribution. The currently installed version is iptables-1.3.5-5.3
I am getting this error message: iptables v1.3.5: Couldn't load match `time':/lib/iptables/libipt_time.so: cannot open shared object file: No such file or directory
Have the -m time components been moved to another library or removed from iptables? How do I stop iptables from trying to load this non-existent library?
I am unable to restore my iptables from iptables-save after upgrading Fedora. I cannot get iptables-restore to work, and I have resorted to entering rules manually using the GUI.
View 2 Replies View RelatedIPtables creates an error during startup as well as when I try to restart it: Here's the output of:
[Code]....
I am going to start studying IPTABLES for Linux Firewall. Can any one suggest me the best Book for IPTABLES contains everything of iptables.
View 2 Replies View RelatedI am unable to find any documentation on the purpose of the unique setting. Does anyone have a clue what it does and how I assign my secondary interface one?
BOOTPROTO='none'
BROADCAST=''
IPADDR=''
[code]....
I use full encryption on this net-book, with the help of LUKS. One key part of the setup is to configure /etc/sysconfig/bootloader with the initial boot options (along the lines of
Code:
root=/dev/mapper/root luks_root=/dev/sda5 luks_home=/dev/sda5 luks_swap=/dev/sda2 luks="root home swap"
). That way a kernel update is installed properly, usually...
[code]....
If i am in the root directory and i need to search for a specific file in the sysconfig directory, is there any way to search this directory for a file?
View 10 Replies View Relatedi am trying to use /etc/sysconfig/dhcpd to specify alternate config directory. My file looks like: # Command line options here DHCPDARGS=-cf /etc/dhcpd/dhcpd.conf
View 3 Replies View Relatedwhat is the role of /etc/sysconfig/httpd configuration file in apache server .
View 2 Replies View RelatedOn RHEL5/CentOS5:Can someone please enlighten me, why there is a /etc/tomcat5/tomcat5.conf that gets ignored and a /etc/sysconfig/tomcat5.conf?This always puzzles me and I really want to understand, why there are two config files in place...
View 1 Replies View RelatedI'm nearly at the end of creating a shell script that automates changing network settings by prompting the user for desired settings, then applying them.
In the course of my development, I created temporary copies of /etc/sysconfig/network-scripts/ifcfg-eth0 (/etc/sysconfig/network-scripts/ifcfg-eth0_tmp1, for example) so as to not alter the original file. Little did I know that on boot the system would attempt to load each of these kinds of files and associate it with an ethernet connection, in this case eth0.
So..... now there are multiple copies in the /etc/sysconfig/network-scripts diretory that essentially have the same settings. They are..
/etc/sysconfig/network-scripts/ifcfg-eth0
/etc/sysconfig/network-scripts/ifcfg-eth0_tmp1
/etc/sysconfig/network-scripts/ifcfg-eth0_tmp2
Now when the system boots, it attempts to load them all. The boot doesn't appear to complete, and I can't ping, login, or otherwise access the system through convention routes (putty, etc.).
The easy solution would be to delete the tmp files and reboot. Now, how do I do that without being able to log in to the server. It's a VM by the way, if that makes a difference.
I am facing a strange problem witht my iptables as there are some firewall entries stored somewhere which is displaying the below firewall entries even after flushing the iptables & when I restart the iptables service then the firewall entries are again shown in my iptables as shown below,
[root@myhome ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
[code]....
I recently installed a new Ubuntu PC that runs iptables and PSAD. I had the same script on another Ubuntu PC, but when I copied the script onto the new PC, I got this error. I don't remember where I found the tutorial for this, all I know is that this is the script (Edited for my usage):
Code:
#!/bin/bash
# Script to check important ports on remote webserver
# Copyright (c) 2009 blogama.org
# This script is licensed under GNU GPL version 2.0 or above
[code]....
Safe.txt contains:
Code:
127.0.0.1
192.168.1.8
192.168.1.1
98.200.58.73
192.168.0.1
And the error message generated is:
Code:
root@NETWORK-SERVER:/var/ddosprotect# ./ipblock.sh
' not found.4.4: host/network `127.0.0.1
Try `iptables -h' or 'iptables --help' for more information.
' not found.4.4: host/network `192.168.1.8
[code]....
I am running Ubuntu server 10.10 and trying to setup iptables rules in /etc/if-up.d/iptables
Quote:
root@host# cat /etc/network/if-up.d/iptables
#!/bin/sh -e
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
Problem is that iptables doesn't get updated and I don't see them when iptables -L is executed after reboot.
To expand: I'm trying to set up a box with l7-filter, and I need to patch and compile iptables 1.4.1.1 as part of the process. I ./configured it with the prefix= argument so it would install into /sbin instead of /usr/sbin, and I did a yum remove iptables before installing it so as not to get in the way of the original iptables, but I'm wondering if this is really necessary - it's kind of annoying, because removing the original iptables removes the init.d script, deregisters the service, etc. If I don't, is it possible that iptables 1.4.1.1 might get overwritten in a system update or something, or will yum see that I've got a custom/newer version in there and leave it be?
View 4 Replies View RelatedI have been struggling with this for a very long time now. I have installed Fedora Core 9 on my computer. I have set it up as a caching-nameserver and this is working.
Then I wanted to secure my server with iptables, and I have so far made this script:
# Load the connection tracker kernel module
modprobe ip_conntrack
iptables -F
iptables -P INPUT DROP
iptables -P FORWARD DROP
[Code]....
I can reach the dns server with ping. When trying Nslookup it says that it got SERVFAIL from 127.0.0.1 trying next server, and then it times out.
My resolv.conf file lists:
nameserver 127.0.0.1
nameserver DNS-server
To remove it, 238 packages have to go. There are so may the board won't even allow me to post them all. [URL]
View 14 Replies View RelatedIm pulling my hair out trying to get ftp to work through iptables.Im using vsftpd
Table: filter
Chain INPUT (policy DROP)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
[code].....
I am using Linux version 2.6.18-8.el5xen. I have two nic card. One is configured as local block ip and another is configured with real ip. I can't ssh from outside (i mean on real ip) local lan. But i can ssh on another nic card which is configured as local lan ip. but somedays ago i could ssh from my home but now i cant. I stopped IPtables but still i cant.
View 3 Replies View Relatedi am forced to do a iptable configuration and the requrements are it shuld get connection from our dubai server (2or 3 static ips) also get connection from local static ip all other networks shuld be blocked what is these prerouting,postrouting&forward chains. is i need to configure that?
View 3 Replies View RelatedWhat i wanted to do was block everything from getting in my pc but still be able to surf the web and still use instant messenger.
View 2 Replies View Relatedhow to let iptables to allow dns & dhcp distributions from the server to the clients only w/out exposing the port dhcp port udp 67,68 and tcp port 67,68 as well from the outside world.DHCP only uses udp, but still I also allowed tcp ports as well just to be sure & also I already allow DNS ports in the firewall w/c is not inluded below. linux newbie here,
when i issued the command below to allow those ports only to the internal network the firewall still blocking it. what seems to be the problem?? #iptables -A INPUT -m iprange --src-range 192.168.0.1-192.168.0.254 -p udp --dport 67 -j ACCEPT
[Code]...
I want to block the icmp packets(ping) from the other computer to my RHEL-4 what's the syntax I should use to do so in IPTABLES.
View 2 Replies View RelatedSo I am trying to block any SSH connection attempts on Saturdays and Sundays to be rejected. This is the command I have come up with.
iptables -A INPUT -p tcp --dport 22 -o eth0 -i virbr0 -days Sat,Sun -j REJECT
I have also tried many different ways to do this but nothing is working, I am always getting Bad Argument: 'Sat,Sun' error, also when I try to use --days it says it doesn't recognize it.
