Software :: How To Install IPtables From Source
Jun 13, 2011
I think I'll need to install a newer version of IPtables for my CentOS 5.6 since I updated the kernel to 2.6.32.41 and iptables-1.4.6 seems to be the older version that matches this kernel but CentOS 5.6 is shipped with 1.3.5 (this distro and it's 10 years old packages is starting to bore me...).
So I need to update iptables but I don't find good howtos on this subject...
So my question would be : how to build iptables from source and does it change anything to the procedure that I already have 1.3.5 installed ?
View 3 Replies
ADVERTISEMENT
Jul 23, 2010
Now I managed to get iptables to work with my OpenVZ configurations and everything seems to work as it should. However when I run iptables -L I can only see source for the second SSH rule, why isn't the first ones source/IP shown? Also if you have any comments about the setup feel free. I'm running SSH, Apache and local MySQL
The xxx.xxx is simply to hide my IP's
Code:
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP
iptables -F
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -F -t mangle
iptables -X
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -d 127.0.0.0/8 -j REJECT
iptables -A INPUT -p tcp --dport 22 -s 77.213.xxx.xxx -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -s 62.198.xxx.xxx -j ACCEPT
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED -j ACCEPT
iptables -A INPUT -m state --state INVALID -j REJECT
iptables -A INPUT -j REJECT
iptables -A INPUT -j DROP
View 6 Replies
View Related
Jul 22, 2010
I have a computer with two interfaces (eth0 and eth1), eth0 is connected with a local network and eth1 is connected to the internet, also it implements a NAT in the interface eth1. Nevertheless, I'm trying to create spoofed packets with sockets raw in the computer that runs the NAT and send the packets to the interface eth1. The problem is that the NAT is changing the IP source to the real one before send the packets. So, anyone have any idea how can I implements the NAT in eth1 but only apply the NAT to the packets that are from/to eth0? I was thinking in something like (I am really newbie with iptables):
iptables -t nat -A POSTROUTING -o eth1 -i eth0 -j MASQUERADE
Well, it didn't work.
View 1 Replies
View Related
May 18, 2010
This isn't exactly of critical importance, but is there any way to block two entirely different addresses in the one rule, rather than writing individual rules for each of them? For example, if the addresses were 1.1.1.1 and 8.8.8.8, and I only wanted to block these two.
Or alternatively, if I wanted to block two subnets, say 1.1.1.0/24 and 8.8.8.0/24? Can this be done in one rule?
View 2 Replies
View Related
Oct 25, 2010
Here is a glimpse of my IPTABLES
http://pastebin.com/WvHAC46A
I see in the column of sources the addresses being resolved to domain names is there a way I can stop this?
View 4 Replies
View Related
May 3, 2011
I'm currently using a homemade Python script to parse script kiddie IP addresses from logfiles.To this point, I've simply been DROPping any requests from these IPs using iptables.I thought it might be fun to redirect their traffic back to them, but as I am not an expert at iptables, I was wondering if I should use FORWARD or PREROUTING.
View 7 Replies
View Related
Feb 19, 2010
installed the fedora 12, but dont know how to use the source dvd to install the source package.
View 3 Replies
View Related
Nov 26, 2010
I am unable to restore my iptables from iptables-save after upgrading Fedora. I cannot get iptables-restore to work, and I have resorted to entering rules manually using the GUI.
View 2 Replies
View Related
Sep 17, 2010
I am facing a strange problem witht my iptables as there are some firewall entries stored somewhere which is displaying the below firewall entries even after flushing the iptables & when I restart the iptables service then the firewall entries are again shown in my iptables as shown below,
[root@myhome ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
[code]....
View 6 Replies
View Related
Nov 3, 2010
I recently installed a new Ubuntu PC that runs iptables and PSAD. I had the same script on another Ubuntu PC, but when I copied the script onto the new PC, I got this error. I don't remember where I found the tutorial for this, all I know is that this is the script (Edited for my usage):
Code:
#!/bin/bash
# Script to check important ports on remote webserver
# Copyright (c) 2009 blogama.org
# This script is licensed under GNU GPL version 2.0 or above
[code]....
Safe.txt contains:
Code:
127.0.0.1
192.168.1.8
192.168.1.1
98.200.58.73
192.168.0.1
And the error message generated is:
Code:
root@NETWORK-SERVER:/var/ddosprotect# ./ipblock.sh
' not found.4.4: host/network `127.0.0.1
Try `iptables -h' or 'iptables --help' for more information.
' not found.4.4: host/network `192.168.1.8
[code]....
View 3 Replies
View Related
Jul 17, 2010
IPtables creates an error during startup as well as when I try to restart it: Here's the output of:
[Code]....
View 11 Replies
View Related
Apr 16, 2011
I am running Ubuntu server 10.10 and trying to setup iptables rules in /etc/if-up.d/iptables
Quote:
root@host# cat /etc/network/if-up.d/iptables
#!/bin/sh -e
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
Problem is that iptables doesn't get updated and I don't see them when iptables -L is executed after reboot.
View 2 Replies
View Related
Apr 28, 2009
To expand: I'm trying to set up a box with l7-filter, and I need to patch and compile iptables 1.4.1.1 as part of the process. I ./configured it with the prefix= argument so it would install into /sbin instead of /usr/sbin, and I did a yum remove iptables before installing it so as not to get in the way of the original iptables, but I'm wondering if this is really necessary - it's kind of annoying, because removing the original iptables removes the init.d script, deregisters the service, etc. If I don't, is it possible that iptables 1.4.1.1 might get overwritten in a system update or something, or will yum see that I've got a custom/newer version in there and leave it be?
View 4 Replies
View Related
Mar 14, 2011
Since I've installed opensuse 11.4 instead of 11.3, I cannot install .rpm packages nor execute updates. I get the following message: "There has been a (probably temporarily) when connecting to the software source/repository" (own translation) details: Media source [URL] does not contain the desired medium So, probably there is something wrong with my software sources. Could anyone give a suggestion to repair this since I'm not a linux expert and would like to install new software on my newly updated machine.
View 9 Replies
View Related
Sep 20, 2009
I am trying to install CentOS guest on CentOS 5.3 host. I have installed all the requirements for the same. As per documentation, only NETWORK install is supported if the guest is to be installed as paravirtalized.I copied the CentOS DVD in /home directory with folder name centos52 and exported it through NFS. When I run Virtual machine manager and give installation path as: nfs:<ip address of host>:/home/centos52 , the system while trying to create the storage fails and throws following error:Unable to complete install: 'Invalid install location: Mounting location nfs://<ip address of host>:/home/centos52 failed'
View 1 Replies
View Related
Apr 5, 2011
How to install netfilter/iptables ? debian6
View 1 Replies
View Related
Jun 10, 2009
I have an old iptables script (?) that I got from iptablesrocks.org, which works fine with my antique Fedora 4 system. I transferred it to a brand new RHEL 5.3 install, but when I go to use 'iptables-restore < firewall_script' it throws a 'no command specified' error at the very last line of the script, which I have never seen before. The script works fine on Fedora 10 and RHEL 5.1, I am pretty sure it even works fine on RHEL 5.2. Could it be that the fact that I am using 64-bit Linux for the first time, and need to do something different? Here is the script: [URL]
View 5 Replies
View Related
Jun 18, 2011
I am going to start studying IPTABLES for Linux Firewall. Can any one suggest me the best Book for IPTABLES contains everything of iptables.
View 2 Replies
View Related
Nov 10, 2015
I'm working on my iptables rules on a debian 8 vps and I tried to install iptables-persistent but I was told "Unable to locate package"...
Where can I get this so that I may save my rules for reboot?
View 5 Replies
View Related
Jun 28, 2011
Is there any open source virtual machine so i can study the source in order to create my own? i'm gonna write my own, so it doesNT matter if license does not allow further development of the code.
View 1 Replies
View Related
Apr 11, 2011
i am already a little bit familiar with linux and now i want to know better the linux OS. i have downloaded the source code of the krnel from the kernel.org and i dont understand the linux source trees organization, so can somebody do me a favor and give me a link to some internet page (or at least a book) that explains that?? i have searched in the internet with the tag:::linux source trees organization and i have not found nothing interesting
View 1 Replies
View Related
Jan 16, 2010
I was trying to install a program from source. I cd'd to the directory then ./configure'd. It was configuring fine until this.
Quote:
checking for GTK+ - version >= 2.4.0... no
*** Could not run GTK+ test program, checking why...
*** The test program failed to compile or link. See the file config.log for the
*** exact error that occured. This usually means GTK+ is incorrectly installed.
configure: error: *** GTK+ version 2.4.0 not found! How can I fix this?
View 1 Replies
View Related
Aug 30, 2010
I want to look at Red Hat 9 source code on the same PC I installed RH9 on. Yes, I know that is old. The CD package has 3 source CDs and each has a key. I try using:
rpm -i package_name.rpm
and I get warning saying NO_KEY. Also, where is the source installed?
View 6 Replies
View Related
Jan 2, 2009
We all know we can install a linux system such as Fedora 10 and use it. Being linux, one should in principle get the source codes for everything that has been precompiled (except the proprietary drivers such as nvidia) in the installation DVDs/CDs. Where are the source codes ? Is there a place I can download them ?
To avoid confusion, I am not referring to the kernel source that can be compiled to give a linux kernel, but that does not include the drivers, such as intel_drv.so.
To be more specific, the intel graphic i810 driver has been built into any linux system, but where is the exact source? One answer may be that primary source intellinuxgraphics.com. However, if anyone tries to download the every changing (i.e., keep updated almost every single day) driver source codes from freedesktop.org, it is almost certain that the source codes will not be the same as the one that is finalized in Fedora 10.
View 9 Replies
View Related
Dec 8, 2009
I recently installed Suse 11.1 from the Live CD on an older PC. Suddenly, when booting up yesterday, the system announced corrupted IPtables and didn't load KDE. After login, I tried commands like KDE, run KDE but the bash didn't understand the commands.
So I booted from the live CD, but I can't find an option in the install menu to repair the existing installation. The help in the boot-up screen claims there should be an install option, but it doesn't show it at that point, only after KDE has started from the Live CD.
Since I've already made some changes (newer firefox, downloaded thunderbird etc.), I would like to keep and repair the current installation, instead of a new installation.
I don't however understand enough about the automatic partitions I'm being offered in the installation menu to know what to choose to keep the existing files. I did choose the offered automatic partitions the first time, and have now several partitions, home swap and so on.
Second question: While 11.1 was still running nicely, I could not find the option to upgrade to 11.2 in the Yast menu (I don't know any batch commands, so I only use Yast for installation). Looking at the download sites on opensuse on the internet, I saw an update option, but when I tried to add that URL to the Yast repository, it somehow didn't work. I also didn't see a nicely packed .rpm or similar update package.
Third problem: I downloaded a newer version of Firefox and Thunderbird and after some tries got Yast software repositories to install them. But the Avira antivir tar.gz package I downloaded, did not appear on the Yast repository manager. Doubleclicking to Ark didn't work, and when I went to console and tried to run the install file in the zipped package, it wanted parameters, and I didn't know what to answer.
View 6 Replies
View Related
Jan 30, 2010
Since I have the latest updates of fedora 11, I can no more install fpc-2.4.0-1.src.rpm. What should I do?
View 11 Replies
View Related
Mar 26, 2011
KeePassX is a fork of KeePass; the outstanding open source application for securely storing passwords. I use it for all my accounts and passwords for all my machines and customers. I ran into quite a bit of trouble trying to build it from source as it requires the Qt and Xorg headers to compile.
The following are the steps to build and install keepassx from source on Fedora 14
Step1: Install dependencies
Code:
yum -y install gcc gcc-c++ qt-devel qt-config libXtst-devel
Step 2: Fetch source code
Code:
wget http://downloads.sourceforge.net/keepassx/keepassx-0.4.3.tar.gz
Step 3: Unpack Source
[Code]....
View 3 Replies
View Related
Feb 6, 2010
In what directory do I need to install a tarball containing API libraries in order to import the libraries for programming?I've been trying for a few hours now to get started on my homework - but I need the GLUT api for OpenGL. After attempting to compile a simple test program, I got the error
Code:
glut.h: No such file or directory
First off, I'm not even really sure if OpenGL wasn't included in the original install or if I even need it when programming with GLUT (I truelly am clueless, lol). But after reading as much as I could, I've only been able to deduce that I need to install the API libraries somewhere on my disc.So I found the tarball, and there are special instructions for installing a linux machine. I found instructions saying to install it in the directory /usr/lib/ but is that right for the SUSE distro?Also, if anybody knows anything about GLUT/OpenGL programming + openSUSE11.2.
View 9 Replies
View Related
May 19, 2010
I am trying to install audacious from a tar.gz. Here is the ./configure output
Code:
elliotn@elliotn-desktop:~/Desktop/audacious-2.3$ ./configure
checking build system type... i686-pc-linux-gnu
checking host system type... i686-pc-linux-gnu
checking target system type... i686-pc-linux-gnu
checking for gcc... gcc
checking whether the C compiler works... yes
checking for C compiler default output file name... a.out
checking for suffix of executables...
checking whether we are cross compiling... no .....
Configuration:
Install path: /usr/local
Use one plugin dir:
Allow user plugin dir: yes
Additional debugging output: no
Automatic character code detection: yes
D-Bus support: no
Session management (eggsm) yes
XSPF playlists no
SSE2: yes
AltiVec: no
WARNING! DBUS support is disabled. This means that various features the user might expect (such as remotely adding files to session via commandline) will not work! If I type make it dies make but I see nothing under sounds if I type make here is the output:
Code:
elliotn@elliotn-desktop:~/Desktop/audacious-2.3$ make
Entering directory src.
Entering directory libeggsmclient.
Successfully generated dependencies.
Leaving directory libeggsmclient.
Entering directory libaudcore .....
View 5 Replies
View Related
May 14, 2011
Basically I'm looking at the Calibre source code tarball
[URL]
I'm clueless as on how to compile and install Calibre from the tarball source code.
View 3 Replies
View Related
