General :: Accessing Multicast From Internet Through Shorewall?
Aug 6, 2010
- I have setup an application in my local subnet 10.1.0.0/16 which broadcast udp packet.
- My application broadcast from machine with 10.1.2.240 and also broadcast from multicast address 225.1.2.3 using port 3035 (it's the correct multicast address right ?)
- I have develop small application to receive the udp packet from the multicast address. It's running OK.
Problems/question :
How can i setup my firewall (using shorewall) so that user from internet can receive the udp packet from multicast ?
Is it possible to listen udp broadcast address behind the firewall (without setting up vpn connection) ?
View 3 Replies
ADVERTISEMENT
Mar 24, 2011
I've got a Ubuntu Server Linux router that I've got 2 internet connections hooked to. One of them is DSL and the other is cable.
What I'd like to do is have everything go through the DSL connection EXCEPT for one desktop, I'd like that system to go through cable for everything.
Here's a diagram of how I've got things set up.
[URL]
I don't have any more expansion slots on the mainboard of my server for another NIC, also I do a lot of file transferring between a laptop and the desktop I want on the cable connection so I don't want that slowing down the rest of my network.
I've got both providers set up in the providers file and I've got everything going through the DSL connection right now. So far everything I've tried has stopped the desktop from connecting out at all.
View 2 Replies
View Related
Jan 23, 2011
I got a server setup with three nics
eth0 = wan
eth1 = lan
eth2 = iptv (multicast)
When I have my IPTV inserted in the computer I am either having problems connecting to the internet or recieve the multicast streams from the iptv. I do get a valid ip on both the WAN and IPTV, but I am having problems getting them both to work at the same time.
eth0:
eth0 Link encap:Ethernet HWaddr 00:14:d1:1d:72:39
inet addr:94.xx.xx.63 Bcast:255.255.255.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2180753 errors:0 dropped:0 overruns:0 frame:0
[Code]...
View 1 Replies
View Related
Jul 28, 2011
How to kill the processes accessing Internet in background using terminal commands.Command to stop (disconnect) the processes accessing Internet.Command to kill the process accessing Internet.
View 1 Replies
View Related
Sep 23, 2010
I have a Linux box being used as a firewall with Fedora 10 and shorewall 4.2.10. Secondary IPs are loaded on the WAN (eth1)card through Shorewall NAT and Rules file. The problem is that if there is a network hickup or if the circuit bounces, the primary IP comes back but I have to reload Shorewall to get the secondary ips back. Is there a way so that they can automatically reload or just not go away if the connection bounces?
View 4 Replies
View Related
Jan 4, 2010
I have set up a FTP server in my home (FileZilla) and everything works how it is supposed to. I understand that port forwarding is required and can easily set that up. My question is what IP address do I use to connect to it when I am outside of my home network. Do I use the one my ISP gave me? And how do I figure out what that is? Could my ISP be using NAT that could be messing things up for me? Could there any other configurations that I need to perform ? Also do ISP's frown upon home ftp servers? (USA)
View 5 Replies
View Related
Jan 11, 2010
Can we enable IP tables to forward multicast or broadcast messages?
View 1 Replies
View Related
May 20, 2010
how do i stop a chosen app from accessing the internet ??
View 8 Replies
View Related
Jul 18, 2011
I am using fedora 8 . Recently i have bring a DLINK ( DGE-528T ) LAN card 100/1000 that is giving problem . It is detecting so i have given ip address to that card and restarted services but its is not accessing internet.
View 1 Replies
View Related
Jun 8, 2010
I have never seen this before but to connect to the internet either wired or wireless I have to connect to a broadband connection as well. I am currently using wireless; I connect to ISP with wireless but in order to access the internet I have connect to the wireless connection through my broadband connection(This is where I enter a user name and password.). I'm not sure why this is, I have always just plugged an Ethernet cable in and the computer just knew I guess.
I am using ubuntu-10.04-netbook-i386.iso that I had put onto a USB drive. It booted fine, but when I tried accessing the internet I couldn't. I was able to connect to the ISP, but I couldn't find any settings for a broadband connection. My computer is a Acer Aspire One Netbook 250
Intel Atom
CPU N270 @ 1.60GHz
1.60 GHz 1.99 GB of RAM
Network Adapters
Atheros AR 5B95 Wireless Network Adapter
Atheros AR8132 PCI-E Fast Ethernet Controller
View 3 Replies
View Related
Jun 29, 2010
i have php5 and mysql on ubuntu server which is hosting a WordPress blog. i activated it remotely over the internet and it works fine still over the internet. now im home and using my local network again and now when i try to go into it with its local IP, it just shows some text (blog title, posts and so on) with NO pictures.
View 2 Replies
View Related
Mar 30, 2011
I just received a 2 tb drive for my server to be. The pc is a P4 3.06 ghz with 4 gb of ram. I have found a number of posts on this forum, as well as on the net in general, about setting up a file/print server at home. What I want to be able to do is to access my server through the internet from my office computer (windows 2000) How can I do that? I have not yet spent much time trying to decide which distro I will use. It seems that a number of them are suitable for this purpose, so I just plan to try several from a live cd and then choose one.
View 1 Replies
View Related
Jan 26, 2010
I already have Linux Enterprise 5 system installed with some server packages such as Webmin, Active Directory, Web Server which also act as Internet gateway. Now I want to add firewall functionality to block clients ip accessing internet.
View 14 Replies
View Related
Aug 9, 2009
Today I noticed my sdl modem flashing away when I had no internet access programs active as far as I was aware. I did a 'ps ax' to see what was running. I saw nothing that warranted internet access. I didn't recognize the gvfsd-computer process and tried finding documentation about it on my system. I began to feel uncomfortable when I couldn't find anything showing what it was. Finally, I killed the process and the internet access immediately stopped. Research on the net showed that gvfsd-computer is a file browser. I find this very disturbing. Why was a file browser accessing my disk drive (the light was flashing) and why was it accessing the internet without my requesting such an action?
View 5 Replies
View Related
Feb 27, 2011
I would like to access my NSA-220 Plus through the Internet without having computer turned on. I tried to set it up as a FTP server but I was not successful. I tried few tutorials but all allow me to access NSA-220 Plus only within my home network which is not what I want. Also I tried user manual which does not really tell you how to do this.
View 2 Replies
View Related
Mar 28, 2010
I am in verse to test "Multicast Packet filtering".I want to setup Virtual Machines to be servers with bind option set to a multicast group address of 225.0.62.87.Then I want to configure the client VM, connecting to the multicast group address and setting the TTL as needed.
View 3 Replies
View Related
May 12, 2010
I have 17 system (sys1,sys2,sys3.....sys17) in my office, and i am willing to setup a dedicated system to act as a firewall for that i have selected sys1 with two NIC(eth0 for local network and eth1 for internet) and i have configured to access internet in my office for that i have opened a wellknown port 80.but my clients are not accessing the internet..
and please check my sample IP configuration !!!
interface : eth1 (ISP IP)just for example
IP :192.168.0.2
gateway:192.168.0.1
dns:202.56.230.5
dns:202.56.230.6
Interface : eth0 (my local lan )
192.168.1.1
255.255.255.0
IP address of xp clients ranges form 192.168.1.2 to 192.168.1.16 with default 255.255.255.0
my question is that which gateway address and dns i have to give to my clients for accessing internet ?...
View 1 Replies
View Related
Oct 27, 2010
I've searched the forums (250 thread limit) for a fix on this, but all the questions seem unanswered or unrelated. My situation is this: I'm running Ubuntu x64 10.10 'Maverick'. I have a cablemodem connection for my Internet access. I have home network running on DD-WRT with the dreadful Linksys WRT54G series router.
My DD-WRT router is 192.168.1.1, subnet 255.255.255.0.
My Linux box is 192.168.1.61, subnet 255.255.255.0.
I have a VyprVPN connection set up successfully on Linux. Mostly everything works great, speed's fine, latency is what I expect it to be. Except... I also run an SSH server to remotely admin the box at port 22, an Apache server running over SSL at port 7001, and a Transmission web client at port 7002 (only secured by basic HTTP realms auth). All of these things worked before I got the VPN working, I'm of course using NAT at the DD-WRT router.
The endresult I am looking for, is to have the security and protection of the VPN (even if it's only perceived) for everything I do on this machine -- EXCEPT on Apache, the Transmission web panel, and the SSH server, which I want to access from the outside world. I have no firewalls running or configured, not even iptables, not even the SPI firewall on DD-WRT. All connections to the aforementioned services from the outside world timeout coming in to the Linux box. They all work from inside my home network (182.168.1.0/24). In case it's needed, he's my routing:
[Code]....
View 2 Replies
View Related
Apr 17, 2011
I posted a previous topic on bridging, and that didn't seem to work, so I went with Shorewall and I'm trying to setup NAT, but I'm struggling very badly. I have the interfaces configured where eth1 is my Local LAN (loc) network, and eth0 connects to my ISP (net). But my problem is that I have no clue how to forward traffic from eth1 to eth0, without using ProxyARP, which routes all traffic to eth1, and doesn't allow traffic out on itself. I've looked at the NAT tutorials, and they don't make sense to me, because I have two interfaces that I want to be able to talk to each other and the internet at the same time. Is there anyone who's good with Shorewall?
View 3 Replies
View Related
Aug 27, 2010
I have searched the web for this answer and i can't find it. I'm using Shorewall for my company firewall and all is working well. But i need to tweak down a few problems that i have. Employees have internet connection over a proxy server (http and https traffic), but some do need to connect to other ports not through proxy but directly. I want to add a exception to the rules. For example i want to allow that a local ip can connect to a predefined ip on the net to a specific port. All my attempts have failed.
View 3 Replies
View Related
Feb 21, 2009
We installed Fedora on top by my WindowsXP, we have updated the connection information with the addresses, but can't access any website. Connection Manager says we're connected. We created a new wired network connection, but it doesn't appear in the choices.
I installed Ubuntu recently and had a similar problem, only mine was that my computer was competing with hers (something to do with DHCP). The solution was to alter my /etc/network/interfaces file, but I also screwed with settings in the "Network Connections" thing, pretty much altering a connection my /etc/network/interfaces file seemed to have made. My problem was only solved as far as I cared. I wonder if this is the same problem.
On the other hand, we attempted connecting the Fedora box directly to a modem and still no internet, so I believe they are entirely unrelated. But I wanted to include this for completeness in case they are.
View 5 Replies
View Related
Mar 3, 2011
The server I'm running runs Debian Etch, Squid and Shorewall. Every 24 hours the server gets a new internet IP so I need to use dyndns to keep the dns pointing to the correct PC.
I have a webserver that is running behind the debian server and am having trouble with it. When I enter the web address, it gets a timeout.
View 3 Replies
View Related
Apr 5, 2010
I always use Shorewall on my Ubuntu Servers and it works great, one things I have never been able to get right is the TOS.Let say for example I would like:
HTTP traffic (80, but all traffic get routed to 3128 [Squid]) to get highest priority
SMTP (25) second highest
POP (110) third highest
The rest forth
How would I get that right?
View 1 Replies
View Related
May 11, 2010
Any time I try and restart the Shorewall it takes forever. Sometimes I have to reboot the File Server as its faster.In the shorewall-init.log it seems to stick on the loading modules and goes no further. Anyone come accross this before.I have Ubunut 8.04LTS - everything seemed to be working OK until I installed NFS, NIS, AUTOFS - but I can't be 100% sure.
View 1 Replies
View Related
Sep 9, 2010
How to get logwatch working with shorewall logs. I tried fwlogwatch but could not get that working.
View 1 Replies
View Related
May 4, 2011
I want to learn about setting up Shorewall, but the website refers to several versions. How do I ascertain which version of Shorewall is on my system?
View 1 Replies
View Related
May 10, 2011
First I will give some background. We have a currently working network that the Previous network Admin assigned an internal IP scheme of 200.1.1.0/24. I have no idea why he would have done such a thing, but it is my job to fix it (and keep our systems up and running). We have a Fedora 10 box on the 200 network that is acting as a router and a firewall (shorewall to be exact).
I added another NIC card (thank you again to all the great people on this forum for helping me get that working) and it is eth2. Assigned it a 10.100.1.A/24 (This is just a variable for the real IP). The other end of the cable that I plugged into that NIC connects to a Cisco Layer 3 switch. I assigned the port that connects to the other end of the cable the IP address of 10.100.1.B/24
Ok, I added the static route of ˜ip route add 10.100.1.0/24 via 10.100.1.A dev eth2' I added loc2 (which is my eth2 adapter) to the /etc/shorewall/zones file. I set eth2 on loc2 in the /etc/shorewall/interfaces file. loc2 eth2 detect I set the lines in the /etc/shorewall/policies file loc loc2 ACCEPT info loc2 loc ACCEPT info I can ping the cisco switch from the linux server itself. From a PC on the original network I can ping the new NIC card in the linux server, but cannot ping the cisco switch, so I figure it has to be either the route or shorewall.
View 13 Replies
View Related
Aug 17, 2010
let me show you my config and tell me if its ok
Its pretty simple:
eth2 -> 192.168.1.0
eth2:0 ->192.168.50.0
eth1 and eth0 are the net interfaces, 1 router each to provide wan failover (not implemented here)
Hosts:
loc1 eth2:192.168.1.0/24
loc50 eth2:192.168.50.0/24
Interfaces
net6 eth0 detect
net7 eth1 detect
- eth2 192.168.1.255,192.168.50.255
Masq
eth0 eth2
eth1 eth2
eth2 eth2
Policy
all all ACCEPT info
Rules
SECTION NEW
REJECT loc50 loc1 all
Zones
fw firewall
net6 ipv4
net7 ipv4
loc1 ipv4
loc50 ipv4
Problems / Doubs:
1) Is the hosts file required?
2) I guess I need doing masq from local to each external, and also from local to local even if they share the same interface, hence the eth2 eth2 in the masq file...
3) So is shorewall well implemented in these scripts to handle aliases?
View 2 Replies
View Related
Jan 3, 2011
I got Shorewall firewall all Set-up perfect but I'm stuck at 1 last bit. The aim is to let on 2 clients max onto my server. I have the policy setup in webmin as.
Uploaded with ImageShack.us
More than 2 clients can get onto the server. The aim is to have it as a ddos protection allowing 100 clients on and a max burst of 10 clients at a time.
View 3 Replies
View Related
Jan 29, 2011
I have my system set up to where the router(dd-wrt) will send it's syslog messages to my Linux PC system. I am using shorewall as my firewall. I have two questions: How can I configure shorewall to allow the messages from my router? If I use my router IP address to allow the messages to come through the firewall, will this be a great security risk as anything from the internet can come through on that router ipaddress?
View 1 Replies
View Related
