Recommend open source tools that can help in figuring out if we are experiencing a network latency due to the newly installed firewall on our server.
View 1 RepliesI want configure open source firewall on my office for websites blocking and bandwidth monitoring.
which is the beast free open source firewall..
Any easy to install/configure network/server monitoring tool? PLease note I'm looking for something of little lightweight here (Not something like zenoss) But I'd still like to get performance graphs and event notifying alerts. Also note this is to monitor less than 50 servers and perhaps a firewall or 2.
View 2 Replies View Relatedhow efficient and effective are these snort, argus, ossec etc etc for an organization having 3500 PC Network, connected through 700+ Cisco Devices (Layer 2 and Layer 3), and scattered on 130 different sites (geographically)? what should be the combination of products and what should be the architecture for an efficient forensics activity?
View 2 Replies View RelatedCan anyone suggest any reliable open source web based survey tool? (one like this: [url]
View 2 Replies View RelatedI need a good uml tool in opensource. Any List of names and the way to install it!
View 2 Replies View RelatedI need a tool for License Management. It can be for Linux or windows but linux is always preferable
View 1 Replies View RelatedIs there a open-source data protection management tool that anyone knows about and/or can recommend?
View 1 Replies View RelatedLast year I had a gui tool for configuring the radeon open source drivers in my old slackware install but now I forgot the name of it. I'm pretty sure it was gtk based and no matter what I type in google I can't seem to find any reference to it. There is a radeontool but that's not it. Anyone know what the name for it was, or something else that provides easy configuring of the open source radeon drivers? I remember it had lots of options to configure including some I've never heard of. Thought it'd be easy to find now since it seemed so officially supported during the time I used it!
View 1 Replies View RelatedI am using MySQL version 5.1.47 (64bit) on Centos 5.5 in production environment. I am exploring option to monitor MySQL though SNMP traps. Can anybody please let me know if there is any open source SNMP tool that can be used for MySQL monitoring?
View 4 Replies View Relatedi was trying to download Amaya a web authoring tool(open source). i tryed to download and install it but it had a error resolving dependency. could not find libexpat.so.1 i tried to find a place to get this but no success yet
View 6 Replies View RelatedCurrently I am working on one project in which I am transferring existing setup to Open Source platform. I am having brand new IBM server with two NIC card and want to setup Firewall. I am searching for good solution which suits to me. Which firewall system I should go for? I am thinking of IPCop.
1) Firewall should support OpenVPN
2) Easy to manage for Resident technician
3) Should be block streaming, facebook and others sites.
I'm looking for a tool which can monitor whether a process is near limit of maximum open files.
View 1 Replies View RelatedDoes anyone knows of any open source proxy/web traffic monitoring application so I can run reports on users web browsing for Linux? Something equivalent to websense? but free I'm not really concern about blocking any traffic only running reports.
View 2 Replies View RelatedI have looked for and found several tools to show a system's total network usage. I have not, however, been able to find any that show this information in the context of individual processes. Do any such tools for linux exist?
View 4 Replies View RelatedI have few Windows and Linux Machines and am in verse to monitor what upload and download is being performed as the network system are running in slow pace.Any one who can recommend a tool or utility which can track uploads and download in a network.If it can track who is downloading or uploading with what size of data could really benefit.
View 8 Replies View Relatedi have done most of the setup for MRTG network monitor tool.
But i m stuck at configuration part.
the actual MRTG guide says following.
I m little confused about what should i put inplace of community@router.abc.xyz.
Quote:
The next step is to configure mrtg for monitoring a network device. This is done by creating an mrtg.cfg file which defines what you want to monitor. Luckily, you don't have to dive straight in and start writing your own configuration file all by yourself. Together with mrtg you also got a copy of cfgmaker. This is a script you can point at a router of your choice; it will create a mrtg configuration file for you. You can find the script in the bin subdirectory.
cfgmaker --global 'WorkDir: /home/httpd/mrtg'
--global 'Options[_]: bits,growright'
--output /home/mrtg/cfg/mrtg.cfg
community@router.abc.xyz
This example above will create an mrtg config file in /home/mrtg/cfg assuming this is a directory visible on your webserver. You can read all about cfgmaker in cfgmaker. One area you might want to look at is the possibility of using --ifref=ip to prevent interface renumbering troubles from catching you.
If you want to start rolling your own mrtg configuration files, make sure you read mrtg-reference to learn all about the possible configuration options.
I want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.
How can I block internetaccess for all other programmes on openSUSE?
I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.
View 7 Replies View RelatedI now have a firewall up and running: almost perfectly. When I use nmap and perform the most comprehensive scan I can think of, it cannot detect any wide open ports (unless bittorent is running) and cannot fingerprint the OS. My last 2 questions about my firewall (I am very happy now) are:
It seems as though Firestarter has been "abandoned" by the developers, and that gufw is more current. Does it really matter which firewall I use because don't they all do the same thing? I like firestarters system tray icon a lot. 2nd question is I have two open|filtered ports. Are these still pretty well protected?
It is very pleasing to see that I have no open ports, because if you were an experienced Windows user like I was, you got used to the fact you were going to have open ports no matter what. Linux's builtin firewall completely destroys the expensive and useless scams they call Norton and McAfee. Linux officially rocks now
Within the documentation of example OpenVPN setups there is a setup that shows an OpenVPN Server with two network interfaces. One interfaces is plugged into the public internet network and the second interface is plugged into the private network.
Normally I assume that it would be best to place the OpenVPN system inside the network behind the router and firewall and open only the ports needed on the router to allow access to the OpenVPN system. All other router ports would be closed. This is the first example they show. To see what I am talking about see page(s) 6-7 here -> [URL]
If one were to use the two interface public facing setup, when would that setup best be justified? I guess if you didn't want to open any ports on the router/firewall then this could be justified but then you have to lock down this public system individually instead of having it protected by the network firewall.
Often after using the network tool, making changes, saving changes, closing the tool, and running a 'service network restart'; the tool will not open again unless I reboot. This is the case both via System --> Administration --> Network and system-config-network (from the command line). I am in runlevel 5, as an uprivileged user when this happens.
View 6 Replies View Relatedi want to install any software or any updates to several machines on my network from Remote Machine simultaneously.
View 7 Replies View RelatedI have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.
View 5 Replies View RelatedI have properly configured my router to open a port for Transmission and Vuze. The OpenSuSE firewall settings are somewhat confusing, however. How do I add a port specifically for the BT protocol? I know it's the firewall causing issues, because when I shut it down, my BT apps roar to life, and die with a whimper when I turn it back on. In Ubuntu, opening a port in the router is automatically configured in the firewall; that is apparently not the case with this distro.
So, when I go to Yast Firewall, I see "allowed services" under the tabs available. When I hit that tab, I see a dropdown menu that contains services such as NetBios Server and Samba Server. Am I choosing one of those available and adding a port to it? Am I adding a custom service via the Advanced settings, and if so, why isn't there a way to label the service so that it shows up under allowed services?
I run a small (cabled) network between a desktop with XP with two printers hooked to it and a laptop with Ubuntu 10.04.1 64b. I can approach and use these printers from my laptop and filesharing works also. BUT ... this only works when my Ubuntu firewall (Gufw 10.04.5) is switched off. I am operating behind my router_modem which has a hardware type of firewall switched on at all times so I presume I'm safe. Now my questions:
1. Is this really safe enough?
2. What kind of settings would Gufw need to be able to use it AND use my mini-network for printing? I have no experience whatsoever with firewall rules and settings.
which is a valid alternative (open source) to clamav?
View 2 Replies View RelatedI have just installed CentOS and it is working fine!I made a masquerade with the document there: I didn't used the script, because right now, I do not completely understand it, and obviously I am not modifying anything by leaving it like that.I was using Mandriva before and I am used to graphical tools My questions are:I add the following lines in my iptables:
[root@localhost ~]# service iptables stop
[root@localhost ~]# iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
[root@localhost ~]# service iptables save
[code]....
I currently want to set up a network with 2 Ubuntu servers (mail and web) in a DMZ in order to separate them from an internal network. I want to use a dedicated Linux firewall. This firewall will have 3 network interfaces on it. One network interface will connect to the external router/modem (router and modem in one box), one interface will connect to the DMZ and the other interface will connect to the internal network. The router/modem lets you put, I think it's 1 or 2, interfaces in a DMZ.
But, when I think of any of the dedicated firewall's or servers' interfaces it doesn't make sense to me to put any of them in the router/modem's DMZ (I think it would be better for the dedicated firewall's and the servers' interfaces to have static private I.Ps ie 192.168.2.4 etc right?). What I mean is that even if, as far as the router/modem is concerned, none of the interfaces were in a DMZ, the area where the servers are would still effectively be a perimeter network and with such a set up would still be, effectively,a DMZ, right?
I have a question about /etc/services file. If I open ports in firewall, do I need to alter /etc/services file in order for certain apps to work?
kpasswd 464/tcp # kpasswd
kpasswd 464/udp # kpasswd
# Theodore Ts'o <tytso&MIT.EDU>
# 465 is illegal used by eMail Server
smtps 465/tcp # eMail Server
#urd 465/tcp # URL Rendesvous Directory for SSM
igmpv3lite 465/udp # IGMP over UDP for SSM
# Toerless Eckert <eckert&cisco.com>
digital-vrc 466/tcp # digital-vrc
digital-vrc 466/udp # digital-vrc
Above example shows if 465 tcp isn't altered, Postfix MTA fails to listen on 465 tcp port. What if there's a bigger span 3000:7000 TCP/UDP, is there a need to alter each line by hand?