Networking :: Stop IPTables To Resolve Source Address?
Oct 25, 2010Here is a glimpse of my IPTABLES
http://pastebin.com/WvHAC46A
I see in the column of sources the addresses being resolved to domain names is there a way I can stop this?
ADVERTISEMENT
Networking :: Traffic Not Passing Through Iptables / Resolve This?
Jan 23, 2011I did some playing around changing up the configuration of my server and now cannot pass traffic through to port 22. I have since restored everything back to the way it was but am still not able to ssh into the server.
nmap only shows port 80 and 5222 open. Both ports that I want open. However I am unable to get 22 to pass.
iptables -nL shows
http://www.theprepared.com/images/tech/iptables_nL.PNG
netstat -an |grep 22 shows
http://www.theprepared.com/images/tech/netstat.PNG
I've tried clearing the routing table with the following which did no good.
ip route flush table main
Can somone point me in the right direction?
Networking :: Add Ip Address In IPTables?
Nov 11, 2010How can I add ip address which is multiple of 3 and to 255? That is I want to block ip address which is coming from multiple of 3 to 255.
As an example 192.168.0.3,192.168.0.6,192.168.0.9,192.168.0.12 etc.
Networking :: Hosts Not Able To Resolve IP Address?
May 28, 2010I have to build a netwrok for small lab and office setup.Setup as belowI have a PC running with Centos 5.4 and has 4 NIC cards. eth0, eth1, eth2 and eth3
View 3 Replies View RelatedNetworking :: ARP Does Not Resolve MAC Address Of Hosts On The Same Subnet?
Jul 26, 2011I just changed my CentOS server from DHCP to static IP address. After the change, I cannot ping other hosts on the same subnet. (I can ping the CentOS itself).The IP address of CentOS is 192.168.0.202.After pinging 192.168.0.106 (106 is on and other host can ping it), arp -a shows? (192.168.0.106) at <incomplete> on eth0 It looks ARP cannot resolve MAC address of hosts 192.168.0.106.
View 1 Replies View RelatedNetworking :: Apply A NAT With Source Restrictions At Iptables?
Jul 22, 2010I have a computer with two interfaces (eth0 and eth1), eth0 is connected with a local network and eth1 is connected to the internet, also it implements a NAT in the interface eth1. Nevertheless, I'm trying to create spoofed packets with sockets raw in the computer that runs the NAT and send the packets to the interface eth1. The problem is that the NAT is changing the IP source to the real one before send the packets. So, anyone have any idea how can I implements the NAT in eth1 but only apply the NAT to the packets that are from/to eth0? I was thinking in something like (I am really newbie with iptables):
iptables -t nat -A POSTROUTING -o eth1 -i eth0 -j MASQUERADE
Well, it didn't work.
Networking :: Set Iptables To Forward All On An Aliased Ip Address?
Apr 15, 2009I have three machines on three networks192.x.x.x10.x.x.x172.x.x.xThe routers are set to forward communication between 192. network and 10. network, and between the 10. network and the 172. network.However, there's not routing between 192. and 172.I want to fix that by using a machine on the 10. network to forward communication between the other two networks.The machine has one etherent connection eth0 whose address is 10.1.1.11I set up an aliased ip address eth0:0 to be 10.1.1.12 using Quote:ifconfig eth0:0 10.1.1.12Then I tried to set forwarding rules the 10. machine such that 10.1.1.12 address will provide access to the machine 172.1.1.55 as followsQuote:# iptables -t nat -A PREROUTING -d 10.1.1.12 -j DNAT --to-destination 172.1.1.55The default policies for all chains is ACCEPT.I then try to access 10.1.1.12 from 192.1.1.20 expecting it to actually access 172.1.1.55 ; it does not work
View 3 Replies View RelatedNetworking :: IPTABLES: Two Unrelated Source IPs In A Single Rule?
May 18, 2010This isn't exactly of critical importance, but is there any way to block two entirely different addresses in the one rule, rather than writing individual rules for each of them? For example, if the addresses were 1.1.1.1 and 8.8.8.8, and I only wanted to block these two.
Or alternatively, if I wanted to block two subnets, say 1.1.1.0/24 and 8.8.8.0/24? Can this be done in one rule?
Ubuntu Networking :: OpenDNS - 8.04 Machine Do Not Always Resolve Internet Address
Nov 17, 2010I have an odd thing going on with DNS. I have two machine's running Ubuntu and for some reason they do not always resolved internet addresses on my Internet connection. This has gone on since the Ubuntu 8.04 when I first started using Ubuntu. Anyway, I use OpenDNS' DNS servers and I have been running perfectly.
This is what is odd. My Windows XP Machine never has the problem. It always resolves. Does Windows Possibly have some Microsoft hosted DNS server hard coded in there as a backup? Things are working fine this way so I am not looking to change. I am just a little puzzled and finally got around to asking, "Why is this".
Networking :: Configure To Resolve For Hostnames When An IP Address Is Provided To DNS Server
May 21, 2010How do we configure to resolve for hostnames when an IP address is provided to the DNS server.
Things I tried
The DNS daemon was started by the resolution failed. Find the logs below
** server can't find 11.127.168.192.in-addr.arpa: NXDOMAIN
Ubuntu Networking :: Redirect Network Traffic To A New IP Address Using IPtables?
Jun 19, 2011how to redirect network traffic to a new IP address using IPtables. I am using Baffalo router and the rtos used is DD-WRT. Basically, I want it so that any connection going through my router to a specific IP (say, 192.168.11.5) will be redirected to another IP (say, 192.168.11.7) so any outgoing connections made by a program that is attempting to connect to192.168.11.5 will instead connect to 192.168.11.7.
View 2 Replies View RelatedUbuntu Networking :: DNS - Clients Unable To Properly Resolve The Server's Ip Address
Oct 4, 2010I'm having really weird and frustrating DNS issues with my clients unable to properly resolve the server's ip address. They can resolve each other's, and outside systems, but not the server - at least, not correctly, and not all the time.
I have one Ubuntu server set up that does both DHCP and DNS serving to the Windows systems. The server has DNS forwarding turned on to forward to OpenDNS's servers (I've tried using my ISP's dns servers but the problem remains).
The server is *not* set up as a firewall; I am actually using a DLink router for that, and the Dlink is *not* set up to serve up DHCP nor DNS.
What I am getting is that my clients - and there are nothing but Windows clients - will not resolve the name of the server. For example, if I do: ping linuxserver
I get back a false IP address of 192.168.0.64 (and I've seen once a 192.168.2.49).
If, however, I put a dot in there: ping linuxserver.
I get back the *correct* IP address of 192.168.0.2, and thereafter, ping'ng linuxserver without the dot will work. Until the dns cache expires, either naturally or with ipconfig /flushdns on the windows clients.
The client *are* getting valid dhcp leases and can resolve everything happy-happy, they just will not get the proper address of the server 100% of the time.
Networking :: 'Unable To Resolve Host Address' Errors With Newer Distributions
Mar 10, 2010I'm trying to troubleshoot some strange networking problems. The pattern seems to be that only newer distributions are affected. CentOS 5.4 and Ubuntu 8.04 work fine out-of-the-box. But Arch, Sidux, AntiX, Fedora, etc. show the same pattern of errors.Certain websites cannot be found unless I disable ipv6 in Firefox. And certain addresses cannot be resolved using various terminal commands (wget, apt-get, yum, etc.). What I would ideally like is a permanent solution, perhaps changing some settings on my router, so that I don't have to deal with this each time I test-drive a new distro. I have a hunch the issue has something to do with my DSL provider (Fairpoint) filing for bankruptcy.
One more piece of information that may or may not be relevant: I recently switched a website from one hosting company to another. I noticed there was a delay of several days where I saw the old version at the old host, but viewing the site at a friend's house or the coffee shop showed the new site on the new host. This leads me to suspect DNS issues perhaps, but this is not an area of expertise.
Networking :: Getting Source Ip Address From Ip Header?
Sep 15, 2010I have written C code to read data from the network using raw socket. I am printing out source/destination ip addresses and ports for packets I am interested in. For most part it decodes Source IP address correctly but sometimes the last part of the address is not correct. The destination ip address is always decoded correctly.
Here is the snippet of code:
Code:
struct sockaddr_in SenderAddr,Source,Dest;
socklen_t SenderLen = sizeof(SenderAddr);
struct iphdr *IpHdr;
struct udphdr *UdpHdr;
[Code]......
Networking :: Specifying The Source Address For SMB Mounts
Jan 11, 2010Is there way that you can specify the source address to use when mounting a remote share? I'm trying to test an application, and I need to be able to script a job that connects to a remote SMB server using different local IP addresses on the system. It would have 1 main address, and several aliases in the same subnet. The script would mount the remote server, transfer a file, then unmount, change IP, and repeat.
View 2 Replies View RelatedNetworking :: Dhcpd Using Wrong Source IP Address?
Feb 16, 2011I'm trying to get dhcpd to use a specific IP address as the source address for responses it uses an IP address for. I coded "local-address 172.30.0.4" in the config file. For some responses it uses this address. For some other responses it does not. In those cases it uses the IP address that is the first on the interface. Is there another configuration I should be using, instead?
View 2 Replies View RelatedUbuntu :: Firefox Address Bar Wont Resolve Address?
Feb 17, 2011In firefox you can type ubuntuforums and it will bring you here via a google query.Mines stopped working the address bar goes to http://ubuntuforums/ and I get a forbidden page.I've check about : config and all is set fine
Code:
Keyword.enable = true
Keyword.URL = http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
[code]....
Ubuntu Installation :: Error "mount Error: Could Not Resolve Address For Servername: No Address Associated With Hostname
Jul 14, 2011This morning it would not boot; when I tried to wake up the system, it gave me a bunch of errors, the last ones being as follows: "mount error: could not resolve address for servername: No address associated with hostname mountall: mount /media/shares [1402] terminated with status 1" I am writing this in Win 7 since I lost ubuntu. I am using ubuntu 11.04.
View 2 Replies View RelatedNetworking :: Iptables Can't Port Forward (PAT Port Address Translation)?
Feb 20, 2010I'm using a Debian servers, as router/firwall.. I've two ethernet interfaces into the server, one for wan and one for lan. The i use SNAT so my LAN clients can access the internet throgh the debian router. That is working... Now i want to be able to access servers on the LAN site from the WAN site, and i wanna use port address translation (PAT). I have a FTP server running on a lan server, so i'm trying to portward port 21.
iptables -t nat -A PREROUTING -p tcp -i eth1 -d (WANIP) --dport 21 -j DNAT --to 192.168.1.2:21
When people try to access my FTP from the WAN site, they are redirected to the local FTP server, and they are promted for crendentials, but when the credentials are typed, and the local ftp server should answer the wan request, the connections dies.
The wan clients are being promted for credentials, so they are redirected to the local lan server, but after that the connections dies, so i think there is some kind of nat problem, when the local lan server is trying to respond to the wan request..
Here i my iptables script:
#flush table
iptables -F
#input regler
[code]....
CentOS 5 Server :: Centos And Xen: Lan Error - Vif0.0: Received Packet With Own Address The Source Address
Jun 18, 2010I installed the Centos 5.5 and after the Xen. After I put a virtual machine named VM01.Initially it worked properly, I tried everything and it worked.When rebooted, I had problems with the network.I have two network cards eth0 and eth1, but eth1 does not have any ip and I use only eth0.The error that appears is:
vif0.0: received packet with own address the source address
Ubuntu :: Can't Stop Dimming Brightness / Resolve This?
Sep 24, 2010Installed 10.04 on a Dell Latitude D610. Found that the screen would start dimming after a few seconds of the computer being idle. Went into the Power Management Preferences to make sure that "Dim display when idle" was unchecked, and it is, both for "On AC Power" and "On Battery Power". Can't seem to figure out how to stop my brightness from dimming. Any help would be greatly appreciated, and any further information you need I will gladly provide.
View 2 Replies View RelatedCentOS 5 :: Possible To Stop Anything Being Added To Iptables?
Mar 3, 2009I seem to be having an issue with iptables, every so often the server starts loosing packets and then goes off completley, if I manage to login to ssh I can stop iptables and this resolves the problem, however it keeps doing this. Is it possible to stop anything being added to iptables?
View 6 Replies View RelatedFedora :: Can Make Libvirtd Stop Tempering With Iptables
May 6, 2010I'm using fedora12 with KVM. I'm also using iptables for filtering and nat. Problem is when I start libvirtd, it overwrites my current iptables and iptables config file (/etc/sysconfig/iptables).
Ok it leaves an old copy in /etc/sysconfig/iptables.old, but the main problem is that it removes also all my custom settings from filter and my full nat. I would like the keep control on my iptables and like to manage them on my own. But I cant find an option in the libvirtd config files and/or the libvirtd startup scripts to prevent libvirt from changing my iptables. how I can make libvirtd stop tempering with my iptables?
Security :: Cannot See Source On First SSH Entry In IPTables
Jul 23, 2010Now I managed to get iptables to work with my OpenVZ configurations and everything seems to work as it should. However when I run iptables -L I can only see source for the second SSH rule, why isn't the first ones source/IP shown? Also if you have any comments about the setup feel free. I'm running SSH, Apache and local MySQL
The xxx.xxx is simply to hide my IP's
Code:
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP
iptables -F
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -F -t mangle
iptables -X
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -d 127.0.0.0/8 -j REJECT
iptables -A INPUT -p tcp --dport 22 -s 77.213.xxx.xxx -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -s 62.198.xxx.xxx -j ACCEPT
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED -j ACCEPT
iptables -A INPUT -m state --state INVALID -j REJECT
iptables -A INPUT -j REJECT
iptables -A INPUT -j DROP
Software :: How To Install IPtables From Source
Jun 13, 2011I think I'll need to install a newer version of IPtables for my CentOS 5.6 since I updated the kernel to 2.6.32.41 and iptables-1.4.6 seems to be the older version that matches this kernel but CentOS 5.6 is shipped with 1.3.5 (this distro and it's 10 years old packages is starting to bore me...).
So I need to update iptables but I don't find good howtos on this subject...
So my question would be : how to build iptables from source and does it change anything to the procedure that I already have 1.3.5 installed ?
Ubuntu Servers :: WAN IP Address Wont Resolve?
Feb 18, 2010Ubuntu Server 9.10, with apache, proftpd, mysql and the goodies.
I have wordpress installed and setup under /var/www/
The LAN IP address resolves perfectly to the index.php
However I can not get my WAN IP to resolve. My ISP blocks port 80, so I have my router setup to forward port 81 externally to port 80 of my server. I know the port forwarding is setup correctly and working, because I can go to websites like url and test that port 81 is indeed open.
I also have DynDNS setup on my router and through an account with them, to update my IP address with any changes, to a host name. But because port 80 is blocked I have to access it with, host.name.org:81. Ive had this system up and running before with no issues. Now I can not get the host.name.org:81 to resolve.
Neither can I get my ip address xx.xxx.xx.xxx:81 to resolve.
Ubuntu Security :: Use Address Not Ip In Iptables?
Jul 24, 2010i need to open this address ftp.nai.com, is there a way to use address not ip in iptables?
View 7 Replies View RelatedFedora :: Resolve The Country And Internet Registry Source For 150.216.2.252?
Nov 2, 2010I am comparing jwhois and whois. Specifically, I want to resolve the country and Internet registry source for 150.216.2.252. The correct information is United States and ARIN; however, using the whois command it says it is in Australia and APINC. This is incorrect. I have compiled jwhois; however, it will not work on ip address. It will resolve cnn.com and other websites; however, will not work on ip address such as 150.216.2.252. When I try to use an IP address it says:
jwhois-4.0$ jwhois 207.58.150.216
[Querying whois.arin.net]
[Unable to connect to remote host]
How can I get jwhois to work on this ip address or whois to resolve the correct United States information?
Software :: Install(compile From Source)& Resolve Depndncies?
Apr 11, 2011I do have a broadband connection..and i can install using apt-get but problem is i want to distribute it to my friends at hostel where they dont have internet connection and when i try to install it from tar balls almost every packages having dependencies it require this require this and require this so i m not able to provide them the packages offline how do i know which are the dependencies and do i need to download all the related packages first in order to distribute to my friends? i want to know a way through which i download packages from internet and can give and install it on other pcs.
View 2 Replies View RelatedSoftware :: Server Unable To Resolve Outside Address After Internet Cut Over
Jul 6, 2011Centos 5, After switching out server to another provider the website responds as it should but the server is unable to establish connections to remote servers. Yes the internet connection is fine, I'm actually working on the server remotely.
--- 4.2.2.2 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 2999ms
/etc/resolv.conf has opendns nameservers
nameserver 208.67.222.222
nameserver 208.67.220.220
search localdomain
and I've updated /etc/sysconfig/network to reflect the new IP address.
