Server :: Using Some Application To Block IP Addresses?
Feb 16, 2011
now I have managed my rsyslogd to log the firewall into a separate file I would like to use a script which looks into this file for intruders which for example try to ping, telnet, ssh, rdp etc into my dsl connection.And then use a kind of app or firewall on my ubuntu server to block them.Yes my firewall logs them but does not block them if the policy is enabled, so they have access on through the firewall and the connect to my server but I only want some known IP addresses have access through it and this I cannot program in the firewall so I have to use some extras.Or am I thinking way to far and is there a better solution with IPtables or app?Is it possible to watch tcp connections between the firewall from outside IP addresses and the ubuntu server?
View 7 Replies
ADVERTISEMENT
Dec 7, 2009
I want to use iptables to automatically block all IP addresses who send UDP packets with length 11 more than 3 times per 10 seconds.
View 1 Replies
View Related
Jan 12, 2009
assist me in using the iptables firewall to block all incoming mail traffic (SMTP port 25) except that of a certain IP(s)? the situation is that we have a server that we only want to receive mail from a particular sender.
View 1 Replies
View Related
Mar 15, 2010
Is there any tool for generating logical memory addresses accessed by any application in linux ?
View 2 Replies
View Related
Mar 17, 2010
How to get the list of virtual addresses being accessed by any application during its execution time. I don't want the complete memory map but just the pages which were accessed during an application's execution?
View 2 Replies
View Related
Mar 17, 2010
How to get the list of virtual addresses being accessed by any application during its execution time. I don't want the complete memory map but just the pages which were accessed during an application's execution?
View 1 Replies
View Related
Jul 21, 2010
I'm having trouble mounting hard drives and partitions - and am rather nervous about using Yast partitioner to do this. Is there something that would tell me about mount points in Yast partitioner? So far I haven't been able to find that information anywhere. I don't want to lose information on existing drives and partitions but do want to be able to access them.Some of them appear under disk information in "My Computer" but if I try to mount them I get this error message.There is no application installed that can open files of the type block device (inode/blockdevice).I was trying to edit fstab,his didn't seem straightforward either. I've been hacking this about in other Linux distros - so not entirely clueless
View 6 Replies
View Related
Apr 11, 2011
I have dhcp3-server (isc-dhcp-server) installed on my Debian and now I got a question about how it's giving the IP addresses to new devices.
For example: I connected my laptop and dhcp server gave me 192.168.1.5 address. Will it always give me the same ip address when I connect my laptop or it will eventually change after some time (week-month)? If it's not changing it, then I am wrong about this.
BUT...If I am somehow correct and if it will change in a week and give me another random (like 192.168.1.8) IP even I won't change my laptop network adapter, is it possible to configure dhcp server to always give same IP address depending on what MAC it is?
To make it clear, I want that when I connect new device (new laptop/pc) dhcp server would give it random IP but same time it would note the MAC address and never change the IP on that MAC.
I know about MAC filters, but setting filters is when you know MAC address since beginning and want to assign IP for it, but in my situation I don't know the MAC address.
View 4 Replies
View Related
Apr 28, 2010
I am looking for a code for setting virtual alias for all domains and addresses. The scenario is that when I send an email from anywhere to my server, it will send to only one address but not send to the orginal recipient.
This is my code: I think the problem may be from the regular expression (.*) for any domains/email addresses
/etc/postfix/main.cf:
virtual_alias_domains = (.*) <-----
virtual_alias_maps = hash:/etc/postfix/virtual
/etc/postfix/virtual
(.*) admin@myserver.com <----
View 2 Replies
View Related
Mar 16, 2010
I'd like to add further IP addresses for my server but I don't get it. My steps :
[Code]....
View 19 Replies
View Related
Jul 23, 2011
I want to set multiple IP addresses onto my server and I can then put under an alias.
But is it possible to somehow create a script in perl example that can do this for or is it only possible manually?
View 1 Replies
View Related
Aug 26, 2010
Is there somewhere in WHM where I can allow and disallow various ip addresses to login using PuTTY for SSH.OpenSSH Server, is not running (for security reasons).If OpenSSH is not running, is there a way to allow certain ip addresses only to use ssh.
View 9 Replies
View Related
Nov 28, 2010
I have the following in my httpd.conf file
Code:
# Listen: Allows you to bind Apache to specific IP addresses and/or
# ports, instead of the default. See also the <VirtualHost>
# directive. Change this to Listen on specific IP addresses as shown below to
# prevent Apache from glomming onto all bound IP addresses.
#Listen 12.34.56.78:80 Listen 80
And when I try to start the server, I get the following
Code:
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80. I did have an Apache web server up and running about 6 or 7 years ago - but seem to have lost everything
View 4 Replies
View Related
Nov 1, 2010
Im working with virtuals machines to configure Sendmail on Linux.
I work with two domains (ar and org), the configuration is similar in both, so i will write just one.
In orgs mail server:
The emails stopped coming and the server adds to the e-mail addresses the MX record. For example, if i send an email to u1@org in log appears u1@org.mail.org.
View 14 Replies
View Related
Apr 17, 2011
I set-up his mail server for him with Postfix but what he wants I have no idea how to do.
Essentially he wants it so that the mail gateway IP corresponds with the dedicated IP of the domain and I have no idea how to accomplish this.
I found some documentation on the web saying that the fix for this was to run multiple instances of Postfix which I tried doing but each time I try to start the second instance I get the error that postfix is already running.
There has to be an elegant way to make this happen, I really hate to tell a client something can't be done even though the concept is a bit pointless, IMHO. I am hoping I can get some feedback here on if this can be done and if it can the easiest way for me to accomplish doing it.
Here is some of the config files (example.com has been put in place of the actual domain names and the ip of 5.5.5.5 is in place of the actual IPs
Code:
[root@youronlinehosting ~]# cat /etc/postfix/transport
example.com smtp:5.5.5.5
example.com smtp:5.5.5.6
example.com smtp:5.5.5.7
[Code].....
View 1 Replies
View Related
Aug 23, 2010
I'm trying to use Squid to restrict web access on the computers of my LAN. All of the computers are using static IP address and we use our firewall to deny all HTTP access except for the proxy machine so everyone needs to go through the proxy to access the web.
Most of of the computers have access to websites that are listed on a white list that I called "goodsites". I have a range of IP address that I listed in a file called "super_users". These IP adresses are able to access everything except sites that I have put in a black list called "badsites".
I would like to restrict the use of audio/video streaming for all the IP adresses including the super_users. So far I have been able to effectively block streaming for all the IP addresses except the super_users that are able to bypass this restriction.
Here is the transcript of my squid.conf file:
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8# RFC1918 possible internal network
[Code]....
View 11 Replies
View Related
Feb 20, 2010
I have configured squid server and it is working fine. I want that only specific ip addresses in my LAN should be able to access internet and for that I have given these entries in access control lists in squid.conf file:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
acl QUERY urlpath_regex cgi-bin ?
acl apache rep_header Server ^Apache
acl our_networks src 192.168.0.181/255.255.255.0 192.168.0.182/255.255.255.0
And in http access I have given this:
http_access allow our_networks
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
In this I want that only 192.168.0.181 and .182 should be able to access internet but Now the problem is that all the IPs in the LAN like 192.168.0.20 are also able to access internet. What changes I need to do to allow access to specific IP addresses. I am not using any firewall or iptables entries and i am manually changing in the firefox at client side to access internet.
View 3 Replies
View Related
Oct 20, 2010
I have a MacBook Pro running VirtualBox with Ubuntu 10.10 as a guest. I am trying to run a DHCP server from within the Ubuntu VM. I need to do this in order to run a multicast utility. On a stand alone machine running Fedcora I have this working without fail but within the Ubuntu VM I am having troubles. The DHCP server is starting okay, but when I use a cross over cable connected to a device the device does not ever get an address.I have eth1 bound to my ethernet jack where I am trying to source the addresses, and eth2 bound to my airport which is disabled unless I need internet access.Here is my DHCP.conf file
Code:
###############################################################################
# Amino Communications Sample dhcpd.conf file #
[code]....
View 3 Replies
View Related
Mar 7, 2011
I'm writing because my ubuntu server has started with troubles .
It's running Linux 2.6.32-29-generic-pae kernel for ubuntu server 10.04 and after the last update it stopped from giving addresses on clients connected.
Dhcp3 server it's running and the conf files are fine, but i can only use static addresses assignation now...
Also MYSQL has stopped working (installed for Bacula purpose) but now the dhcp problem is the biggest issue. I work in an office where dhcp is fundamental, too much clients (about 15) that are personal laptops also (so static assignation for clients is not a good choose).
Please any one could help me? It's two days I'm trying to figure it out without success.
also tried removing and reinstalling dhcp3-serer...no way.
Here are my conf files code...
View 1 Replies
View Related
Aug 5, 2009
I have two nagging problems on one network which I do not have on another elsewhere, both using uptodate Debian servers. The server is on the private subnet behind a router/adsl modem. The symptoms of the one which does not work
1) Users cannot access their web site from lan. If they try, they get to the router web interface, same as if they entered http:10.0.0.138 which is the router's lan address.
2) Users cannot access smtp or pop3 service using the domain name, they can access it only using the servers LAN address.
I fear that I might have not set up the router properly because appart from that the two servers are almost identical but I do not know where I might have made an error.
View 14 Replies
View Related
Mar 22, 2011
From my main Postfix SMTP heads, I am sending just a couple select emails (primarily support emails) off to a server that receives them and pipes them into the support software. So far this totally works perfectly and I am pretty happy with the configuration. However, in order for sendmail on the support server to receive those emails I have to place them in the virtusertable of course, but I also have to activate their domain in the local-host-names file. That then causes sendmail to consider itself as the destination server for that whole domain.Is there a way to make sendmail receive email for select addresses without making it think it's the server for the whole domain? This server is only receiving email from two specific smtp servers, so I wonder if I could just permit relaying? Wonder if that would just cause a giant loop though.
View 1 Replies
View Related
Apr 9, 2010
Ubuntu LTS 8.04 + DHCP. Works fine except for fixed addresses. I mean all devices which need to get fixed IP according to their MACs don't get them and keep to receive random IPs from the range (although almost everytime all machines receive the same IP they got from DHCP for the first time).
The following config was created by Webmin interface.
At the one of the ubuntu forums i was advised to carry host description out of the subnet description.
View 1 Replies
View Related
Sep 7, 2010
I have a sendmail alias configured to forward mails to pagers and it was working fine . The mail relays suddenly start converting a mail address of pager into a normal mail(outlook) format address. Say , instead of forwarding a mail to [URL] Provided no configuration inside the mail directory was changed.Which file is responsible in converting the mail-addresses? Is there any other problem with my mail-setup?
View 5 Replies
View Related
May 14, 2011
It wasn't too long ago that I discovered Linux/Ubuntu (in terms of actually USING it) and I've been completely blown away by the capabilities it puts in the user's hands! To think that someone can take an old desktop from a trash pile (literally, in my case) and turn it into a web server for ZERO dollars is absolutely crazy.
Anyway, I've been using said desktop as a sort of "dummy" machine to learn Linux. I want to be clear that I've got another computer for personal use and that I understand that setting up server software on any computer poses a security risk. Having said that, I have a few questions regarding mail servers and their setup on Ubuntu. Again - I'm comfortable with what I've done so far in Ubuntu (installing packages, terminal interaction, basic usage)
My question is mainly this: if you have, say, a domain name through DynDNS (let's say example123.com) and it points to an Ubuntu system, does something like Postfix enable you to make your own email addresses such as user1@example123.com and have an email server from wherever the Ubuntu system is?
I've been following the basic Postfix setup here and have had success so far (down to the "Adding your local domains to postfix" section) bu wanted to make sure that what I'm intending to do is what I'm doing (haha... i hope that makes sense). That is: get domain name at DynDNS, host pages on LAMPP server, use Postfix to facilitate incoming/outgoing email for that domain name.
View 7 Replies
View Related
Apr 13, 2010
We have one squid proxy server running on CentOS 5.3 64 bit with Squid 2.6. it works well for me.
but my problem/question is :
Is it possible to skip proxy for all Internet addresses? and only allow proxy if clients are accessing external addresses?
right now users have to explicitly say in the browsers .. BYPASS PROXY SERVER for local addresses after check the use proxy server
and address has to be mentioned. most users are non technical so they don't use this option or put wrong setting in bypass proxy option
View 2 Replies
View Related
Jun 20, 2010
I have gotten sendmail pretty much to work but kept on getting DSN error in /var/log/maillog, and also the following in /var/spoo /mail/root
[code]...
View 2 Replies
View Related
Aug 4, 2011
Using sendmail, I am trying to setup a catchall address to silently discard spam mail sent to undefined users. I don't want to bounce a reply for "no user" as this often goes back to munged or innocent addresses.
I have a number of domains, so my virtuser table currently looks rather like this:
Code:
The last line is the "catchall" which is intended to ensure that any undefined users from either my_domain.com or my_domain.co.uk is forwarded to the non-existent "catchall" user account. Note that all mail sent to my_domain.com is passed across to my_domain.co.uk at the very start so all the following rules should apply to messages received at both domains. (Both of these domains appear in the
Being non-existent, I setup the following rules in the access data table:
Code:
This way, if I send an email to 'user1@my_domain.com' it is received and delivered to user1@my_domain.co.uk, but if I send an email to 'rubbish@my_domain.com' it *should* be received and silently discarded.
Unfortunately what actually happens is the server responds with:
Now, (just for testing), I made "catchall" an alias for the "postmaster" account and the mail was then received and delivered into the postmaster mailbox. So I know the virtuser rule is working. The account "catchall", however, is not being silently dropped as desired in either configuration.
View 7 Replies
View Related
Aug 4, 2010
Our system uses email to send fairly time-sensitive status messages between programs running on various servers on a WAN. Each email message is sent to two addresses (different servers). The problem occurs when one of the destination mail servers is off the network. I think because it's trying to send one email to two addresses, sendmail attempts delivery to the first address, then to the second address (i.e., serially). When this happens, it hangs for two connect timeout (CONNECT_TO) periods trying to connect to the offline destination, then after the timeout, it then delivers to the other destination. I'm trying to figure out how to work around that connection delay so it doesn't delay delivery to the other destination.
I'm working with the network guys to enable the right ICMP messages that signal when a network is unavailable, but I would also like to try having sendmail split the emails into two envelopes, then use parallel, independent connections for delivery.
After days of reading through the docs (O'Rielly Sendmail book + sendmail docs) I think one way to do this is to use multiple mail queues, but I can't decipher exactly how to do that from the docs.
There might be other, more elegant ways to do the same thing, but again, trying to decipher the docs has my head swimming. (This is my first experience with sendmail.)
View 1 Replies
View Related
Jun 4, 2010
Sendmail on the RHEL server is set up to forward email to company internal mail server (via SMART_HOST). This has worked fine for years.
From the server, doing a sendmail dave@company.com, the message is sent immediately. No problems - and no change here.
From the server, doing a sendmail roberto@compania.com (compania is the part of the company in Mexico) causes a 2m40s delay before sendmail does anything.
No packets are sent until after 2m40s wait. Message is always sent after the delay. It is not clear what the server is waiting for.
For *each* user in the @compania domain specified in sendmail command, an additional 2:40 is imposed before email is sent. Email is always sent after the n*2:40 sec delay.
Sending email to some_name@AnUnusedDomainNameThatDoesntExist.com is processed immediately - with a bounce email received in a couple of seconds.
Q: How do I determine where this 2m 40s delay is introduced?
View 3 Replies
View Related
Sep 1, 2010
I'm new to Centos 5 (and Linux) and, after installing Centos, I configured Samba, Apche, ... w/o problems (through interactive interface). My problem is tha t I need to use DHCP (all our clients use dynamic IP addresses for the ease) but I don't find dhcpd ... nor the sample config file(s).
Note : the new server I intend to use is actually connected on a LAN with an 'old' DHCP server (still under W2K server), is this the reason why I can't find/activate dhcp on my new machine ???
View 3 Replies
View Related
