Server :: Allow Mount In Iptables For Specific Ip?
Aug 1, 2010how to allow mount in iptables for specific ip?
View 9 Replies
ADVERTISEMENT
Security :: Iptables - Limit Access To Port 8443 On Server To 2 Specific IP Addresses
Dec 23, 2010I'm trying to limit access to port 8443 on our server to 2 specific IP addresses. For some reason, access is still being allowed even though I drop all packets that aren't from the named IP addresses. The default policy is ACCEPT on the INPUT chain and this is how we want to keep it for various reasons I wont get into here. Here's the output from iptables -vnL
[Code]...
Note the actual IP we are using is masked here with 123.123.123.123. Until I can get everything working properly, we're only allowing access from 1 IP instead of 2. We can add the other one once it all works right. I haven't worked with iptables very much. So I'm quite confused about why packets matching the DROP criteria are still being allowed.
Server :: LVM - Mount Specific Partition Inside Logical Volume?
Sep 4, 2009I've just started playing with virtualization and I started my first VM. I would like to know if it's possible for the host machine to mount the partitions of the VM when it's closed. Right now the VM uses /dev/vg0/vm1 and has 3 partitions on it. I tried mount /dev/vg0/vm1 ~/vm1 at first before I remembered that I'd need a way to mount a specific partition inside the logical volume, not the volume itself!
View 2 Replies View RelatedUbuntu :: Allow A Specific User To Mount Or Remount A Specific Partition?
Jun 9, 2010my system I want user1 and only user1 to be able to mount and unmount a specific partition, this partition contains backups and is usually mounted read only, needs to be temporarily mounted read/write by user1 while doing the backup.user1 is an unprivileged user. I've read that the user option will let any user mount the file-system (and only that user can then subsequently unmount it) and that the users option allows any user to mount or unmount the file-system.I also found this in mount's man pageQuote:The owner option is similar to the user option, with the restriction that the user must be the owner of the special file. This may be useful e.g. for /dev/fd if a login script makes the console user owner of this device. The group option is similar, with the restriction that the user must be member of the group of the special file.So it looks like I'd need a login script for that user to make the user owner of the device file (/dev/voiceserv/backup in this case)
View 7 Replies View RelatedGeneral :: Mount A Specific Directory On Server To A Local Windows Machine?
Jan 20, 2011I have a directory on my server at /home/dave/www/images/site (ext3) which I want to mount directly to my Windows computer so that I can transfer data easily via command line tool. Is that something possible?
View 4 Replies View RelatedFedora Security :: Iptables Allowing Specific Ip's?
Dec 8, 2009i've got a few questions about iptables. i know how to set up ip tables to only allow from an ip address or a subnetting ip addresses. question is how do i allow from 2 different networks? would i need to create 2 lines of entry in iptables to the same port? e: allow 10.168.1.1 and 196.168.1.1 on port 22 is there a way to put all that in 1 line or would i need to create to rules for the port? i know i can use the ssh allow or deny but i'd like to stop access even before it gets to the ssh. stop it at the source kinda thing.
View 4 Replies View RelatedNetworking :: Set Any Ports On Iptables For One Specific Host Only?
Feb 16, 2011I like to set in iptables to allow access from one host to my server on any ports.
Currently the iptables have been configured to deny all and to allow access only to those I've specified.
Can anyone advice on the command to achieve this?
Security :: Setting Up A Specific Rule Using Iptables?
Apr 5, 2011My firewall , wich is an Ubuntu server 10.10 , have 3 interfaces:
eth0(192.168.0.254):linked to the DMZ
eth1(192.168.1.254):linked to the LAN
eth3(212.217.0.1):linked to the Internet
-The DMZ have one web server with a static address (192.168.0.1).
-My LAN address range is (192.168.1.2-192.168.1.100) managed by a DHCP server in the same firwall machine.
There are some of the rules that I need to set up :
-Allow HTTP between the LAN and the internet
-Allow HTTP between the web server in the DMZ, and the internet.
Is there a way to tell the firewall , to redirect all incoming HTTP requests only to the web server in the DMZ ?
Ubuntu Servers :: Iptables Allow Ports To A Specific Ip Or Domain Name?
Jul 23, 2010How to configure iptables to allow only 22,80,3306 ports for only a dynamic public ip/dyn dns domain name on a ubuntu server?
View 9 Replies View RelatedUbuntu Networking :: Set Any Ports On Iptables For One Specific Host Only?
Feb 15, 2011I like to set in iptables to allow access from one host to my server on any ports.Currently the iptables have been configured to deny all and to allow access only to those I've specified.
View 2 Replies View RelatedGeneral :: Setting Up Iptables For Traffic Forwarding On Port 80 From Specific Sources?
Jun 1, 2010Im running a web server on port80, but i want traffic coming from ip 212.333.111.222 on port 80 to be fowarded to port 9020 on the same server that my web server is rinning at that is my sshd port
View 1 Replies View RelatedServer :: Sendmail: Block Specific Sender To Specific Recipient?
Oct 1, 2009I'm trying to configure our mail server to block email from a specific sender reaching a specific recipient. In other words, if one of our employees is getting harassed by a 'stalker', how would one go about blocking, at the MTA (Sendmail) level, a specific sender email address from reaching a particular users inbox? We do not want to capture the email - simply block it before it consumes server resources.The Sendmail server (MTA) is a front end to our Exchange server so no user accounts exist on the Linux server. We simply use it as a SPAM and Virus scanner then forward clean email to the Exchange server.
View 6 Replies View RelatedServer :: Redirect Specific Ip To Specific Web Page?
Jul 1, 2009I configure squid to work with squidGuard , and all thing work properly , but there is problemfirst look to this squidGuard.confdhhome /usr/local/squidGuard/dblogdir /usr/local/squidGuard/log
src blacklist {
ip 10.0.0.5
}
[code]...
Fedora Networking :: Unable To Mount Specific Directory Via CIFS?
Aug 19, 2011I have a bootable utility toolset that I put together with Fedora 14, one of its primary functions is to map a user designated share via script and access information from it. The command that I used, that functioned perfectly, in Fedora 14 was:
Code:
sudo mount -t cifs -o user=provided.account.name //file-server.mydomain.com/share/images /mnt/source
[code]...
General :: Permissions - Mount Device With Specific User Rights?
Aug 8, 2011How can I mount a device with specific user rights on start up? I still have some problems figuring it out. I would like to mount the divide with uid=1000 and gid=1000. My current entry to the /etc/fstab/ file looks like this:
dev /var/www vboxsf rw, suid, dev, exec, auto, nouser, async, uid=1000
Networking :: NFS Client - Mount Only Works With Proto=tcp While Iptables Is Running
May 17, 2011Client is running Oracle VM Server 2.2.1 (kernel 2.6.18-128.2.1.4.37.el5xen). Storage is a NetApp 3210 (NFS configured to use TCP).
Iptables on client has udp and tcp ports 111, 2049 and the NFS server ports opened. Info retrieved using: rpcinfo -p NetApp
When trying a manual mount ...
But when using the proto=tcp option, it works ...
Stopping iptables also works (I can manually mount the share without using proto=tcp).
Is the mounting process somehow trying to negotiate first using udp which the Netapp doesn't respond and hence it fails by timing out?
Can I configure iptables such that I don't have to use the proto=tcp option? Or is there another configuration file I can tweak so that I don't have to use the proto=tcp option?
OpenSUSE Network :: Nfs Server On 11.2 - Mount.nfs: Mount System Call Failed
Apr 29, 2010I've tried to get an opensuse box I have to share a directory via NFS. I've failed each time, but I thought that the third time, I'd enlist some help from the forums, if I could. how do I know that the nfs server and not the client is the problem? Short answer is: I don't! That's why nfs (and many netwrk problems) are laborious, you're troubleshooting needs to take place at both source and desitination. Next question, what do I have set up so far? Well, I did download the nfs server kernel stuff (two months back) and /etc/init.d/nfsserver start seems to get set up OK. No errors and the daemons nfsd, idmapd, mountd area all running. So, I *think* that part is OK. I have the share set up properly in /etc/exportfs and have "exportfs -r" it.
OK, now onto the trickier stuff: the client and iptables. On the client pinging to the nfserver box is perfect, and I have rpcbind running. the reported error is "mount.nfs: mount system call failed" though from experience nfs errors don't mean a whole lot.However, I will go off and check now and see if I need a mountd running on client-side too.Then there's iptables .... ouch, that could be a long and painful trek. I don't see any specific ports being blocked, and it's the iptables that the default v11.2 opensuse came with. I did turn them off and the problem was the same, so whether wishfl thinking or not, I'm hoping it's not an iptables issue.
SUSE :: Error Occur. "mount.nfs: Mount To NFS Server '10.3.31.146:/home/usbtest' Failed
Feb 9, 2010i have installed nfs server on my redhat machine.when i want to mount shared data from client(suse)machine the following error occur."mount.nfs: mount to NFS server '10.3.31.146:/home/usbtest' failed: System Error: No route to host"
View 1 Replies View RelatedServer :: Auto Mount USB Drive To Specified Mount Point After Reboot
Jul 19, 2010I have servers installed with RHEL 4 2.6.9-89.0.9 ELsmp. I tried using uuid and label in /etc/fstab to automount usb drives to mountpoints that I specify after reboot. Unfortunately, it just does not work in all my RHEL4 servers. After every reboot, /etc/fstab will be automatically modified and all configurations related to my USB drives will be changed. Irregardless of whether i use UUID or LABEL in my /etc/fstab.However, it works on RHEL5. But, upgrading is not an option in my environment. I have been googling around looking for alternatives but everything seems to point back to using UUID or LABEL in /etc/fstab. Anyone has tried something that works? Please help me, thank you.
View 7 Replies View RelatedServer :: Require Iptables Rules For Web Server?
Jul 12, 2011i have hosted a web server on cent os 5.6.i need to write the rules for that server.1. 1st how can i flush the iptables ?
i used this command
iptables -F
iptables -X
[code]...
Server :: Allow Specific IPs Login To FTP?
Nov 9, 2010To allow specific IPs login to FTP server I'm using
Code:
<Limit LOGIN>
Deny from all
Allow from xx.xxx.xx.xx
Allow from xx.xxx.xx.xx
(where x there is IP numbers)
and so on, for all IPs I give access to.
But now I have question, is it possible to make something like this but just for specific users? For example there is user 'user1', how to allow login IP 77.77.77.77 to 'user1' account and deny all others ?
Ubuntu :: Giving A Specific User Permission To Start/stop A Specific Service?
Jun 8, 2010How do I give permission to a logged in user to stop/start a specific service without entering a root/sudo password? So they can do a simple "service SomeService stop|start" It is for a headless Ubuntu server.
View 5 Replies View RelatedServer :: Iptables Log To MySQL?
Apr 6, 2010Does anyone know how to make iptables log to a MySQL database?If you do, can you tell me where I can find a good tutorial?I hope that I didn't ask a question that I could have found easily using Google. I didn't find much or at least not very recent.I am using CentOS 5.4, iptabels 1.3.5 and MySQL 5.0.77.
View 2 Replies View RelatedProgramming :: Search A Bunch Of Files In A Specific Folder For A Specific Number?
Jul 24, 2010I need to search a bunch of files in a specific folder for a specific number and add all the numbers together to a total sum. I use Rsync everyday, everytime I run rsync i get a logfile (rsync output) witch contains the textstring "Total bytes sent: xxxxxx".
The "xxxxx" can vary in lenght. I need to extract the "xxxxxx" from each file and add the numbers together to a total size over a week or a month. Is this possible? And I wish to only use bash. One way of doing stuff at a time my friends .
Fedora Servers :: Unable To Restore My Iptables From Iptables-save After Upgrading
Nov 26, 2010I am unable to restore my iptables from iptables-save after upgrading Fedora. I cannot get iptables-restore to work, and I have resorted to entering rules manually using the GUI.
View 2 Replies View RelatedGeneral :: When Restart The Iptables Service Then The Firewall Entries Are Again Shown In Iptables?
Sep 17, 2010I am facing a strange problem witht my iptables as there are some firewall entries stored somewhere which is displaying the below firewall entries even after flushing the iptables & when I restart the iptables service then the firewall entries are again shown in my iptables as shown below,
[root@myhome ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
[code]....
General :: Change A Specific Characters To Capital In A Specific Text?
Dec 2, 2010for example
else {
for fileDOC in $location/*.doc
do
[code]...
Ubuntu :: Try `iptables -h' Or 'iptables --help' For More Information - ' Not Found.4.4: Host/network `98.200.58.73
Nov 3, 2010I recently installed a new Ubuntu PC that runs iptables and PSAD. I had the same script on another Ubuntu PC, but when I copied the script onto the new PC, I got this error. I don't remember where I found the tutorial for this, all I know is that this is the script (Edited for my usage):
Code:
#!/bin/bash
# Script to check important ports on remote webserver
# Copyright (c) 2009 blogama.org
# This script is licensed under GNU GPL version 2.0 or above
[code]....
Safe.txt contains:
Code:
127.0.0.1
192.168.1.8
192.168.1.1
98.200.58.73
192.168.0.1
And the error message generated is:
Code:
root@NETWORK-SERVER:/var/ddosprotect# ./ipblock.sh
' not found.4.4: host/network `127.0.0.1
Try `iptables -h' or 'iptables --help' for more information.
' not found.4.4: host/network `192.168.1.8
[code]....
Fedora :: IPtables Creates An Error During Startup - Applying Firewall Rules: Iptables-restore: Line 21 Failed
Jul 17, 2010IPtables creates an error during startup as well as when I try to restart it: Here's the output of:
[Code]....
Debian :: Set Up A Specific Home Server?
Apr 22, 2011how to set up a specific home server. What I'd like to do is set up my home server to check mail from various ISP's that use either POP3 or IMAP, then make that mail available to a local IMAP server.
Meaning... Server would just check every nn minutes to see if there is new mail at 2-3 different ISP's and if so, copy/move the messages to my server where I would use an IMAP client to check locally from my server. Before anyone mentions forwarding, neither of the ISP's does not offer forwarding services.