Ubuntu :: Firewall Of Destination Avoid Answering To Pings / Get Name's IP Without Using It?
Feb 15, 2011
I need to check the output of a name resolution, but I configured the firewall of the destination to avoid answering to pings.
Is there any other way to get a name's IP without using ping? (I mean something like $resolv name.com)
View 2 Replies
ADVERTISEMENT
Aug 16, 2010
I have just installed a testing net install of squeeze on my laptop and I'm having a few problems with my wired connection.
When i try to ping google.co.uk there is a large delay between each result even through the actual ping takes ~30ms. It takes about 5 seconds or more between each ping.
If i use ping -n it works fine. Does anyone know why this is happening?
View 3 Replies
View Related
May 30, 2011
why do we have to define both Source/Destination AND Direction when building firewall.Isn't direction= source->destination? what would happen if source and destination were swapped?
View 3 Replies
View Related
May 5, 2010
I have a question, on my firewall at work I am seeing a constant flow of denies from many different source IP addresses, of tcp/udp destination port 53372 & 53375.What in the world is that, and why these two ports over and over
View 1 Replies
View Related
Sep 30, 2010
I just connected an old Microsoft Wireless Desktop Elite Keyboard (keyboard + mouse set) to my Ubuntu and I was wondering if it is possible to configure all the additional keys and in particular the wheel on the keyboard.I found that keytouch was the software to do this, but on Ubuntu 10.04 seems to have some troubles: even after the configuration, all the additional keys are just... dead. The events connected with any of the keys never start.Does someone know how to configure this software?
View 1 Replies
View Related
May 20, 2011
two computers connected directly to each other.HOST A: 192.168.1.1/24HOST B: 92.168.1.2/24Host A can ping and receive answer from host B.BUT, when host B tries to ping host A, host A does not send an answer to host B.tcpdump from host A:
Code:
13:44:57.788200 arp who-has 192.168.1.187 tell 192.168.1.1
13:44:57.968215 arp who-has 192.168.1.101 tell 192.168.1.1
[code]...
View 2 Replies
View Related
Aug 6, 2010
I am having (seemingly) random trouble with my wired network ever since I installed Lucid. I have no problem getting an ip address from dhcp. However, randomly the computer will boot and although I have an ip address I do not receive any responses for pings on the network nor can I browse the web. If I sudo /etc/init.d/networking restart a few times (or reboot) it will start working. However, restarting the networking services (as mentioned above) again will cause me to no longer receive responses for pings or browse the web.
Furthermore, I have never been able to successfully ping if I manually set an ip address. I have un-installed network manager and I am using /etc/network/interfaces to configure the network. Using Lucid Lynx 64bit on a Dell Precision. I have pasted below the output of a few working commands. When I switch between static ip and dhcp I am commenting/uncommenting the lines shown in /etc/network/interfaces.
sudo lshw -c network
*-network
description: Ethernet interface
product: NetXtreme BCM5754 Gigabit Ethernet PCI Express
vendor: Broadcom Corporation
physical id: 0
bus info: pci@0000:08:00.0
logical name: eth0
version: 02
serial: 00:23:ae:99:4a:85
size: 100MB/s
capacity: 1GB/s
width: 64 bits
clock: 33MHz
capabilities: pm vpd msi pciexpress bus_master cap_list ethernet physical tp 10bt 10bt-fd 100bt 100bt-fd 1000bt 1000bt-fd autonegotiation
configuration: autonegotiation=on broadcast=yes driver=tg3 driverversion=3.102 duplex=full firmware=5754-v3.24 ip=10.200.147.153 latency=0 link=yes multicast=yes port=twisted pair speed=100MB/s
resources: irq:78 memory:f7cf0000-f7cfffff
cat /etc/network/interfaces
auto lo
iface lo inet loopback
address 127.0.0.1
auto eth0
#iface eth0 inet static
#address 10.200.147.56
#netmask 255.255.255.0
#broadcast 10.200.147.255
#gateway 10.200.147.1
iface eth0 inet dhcp
View 8 Replies
View Related
Mar 9, 2011
I've been trying to use MySQL in Ubuntu but I've been having some connection issues and in trying to troubleshoot that, I observed this strange behavior with pings in Ubuntu Desktops inside our network.
- All Ubuntu Servers we have (10.10 and 8.04) behave as expected
- All Windows machines behave as expected
- All 5 Ubuntu Desktops we have, (10.10 and 9.10) exhibit the following unexpected behavior:
If they have a local ip addresses and are connected within the internal network, either to a switch or directly to a router, pings take much longer to be sent. It's not a higher lag, it's the time between each ping that increases. I have to wait for around 5 seconds for each ping, but the time in the ping reply is less than 100ms, also they're all in order so I assume it's the system delaying the sending of each ping.
If I plug a USB 3G modem directly then it works as expected again (~1 sec between each ping sent). Is this an intended feature, that depends on the network environment, or is this something I should look into more closely?
View 1 Replies
View Related
Oct 17, 2010
How i know who is pinging me or trying?
View 1 Replies
View Related
Feb 3, 2016
I'm unable to get the "Uncomplicated Firewall" (UFW) to deny incoming pings. I've set it to deny incoming. Yet when I ping it, it responds.I'm using Debian 8.2 jessie KDE fresh/clean install with all updates.Below is the terminal output from a simple test (I've added an extra line feed between the commands for clarity):On a Debian 8.2 computer -- I install UFW, enable it, check its status (deny incoming), and get the Ethernet address:
Code: Select allroot@Computer:/home/user# apt-get install ufw
.... (long output -- no errors or warnings)
root@Computer:/home/user# ufw enable
Firewall is active and enabled on system startup
[code]...
The Debian computer with UFW active is responding to the pings, when it should be ignoring them.Rebooting the Debian computer doesn't fix the problem.This setup is very simple. I'm using all UFW defaults.This is a new Debian 8.2 install (clean) with all updates.
View 3 Replies
View Related
Jan 7, 2011
I have an asus router running tomato firmware. Through the webGUI I have set up an openVPN server as per the tomato guides. I am using the network manager plug-in in ubuntu 10.04 to connect as a client to the tomato openVPN. All of my certificates seem to be set up and working correctly.
I am able to successfully connect to the openVPN server using the ubuntu client but after that I get nothing. On the client side I am unable to ping the router, any ip addresses inside my private network, the virtual network ip, and web browsing (client) no longer works.
Also, when connected I am unable to ping the client from the private network.
Before connecting
Code:
chris@ChrisLaptop:~$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:1e:68:90:5e:e9
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
[Code]....
View 1 Replies
View Related
Jun 14, 2010
I have a BIND server that I'm setting up with different views. There is another server out on the public Internet that currently handles all inquiries for this domain. I had installed the Yum packages, chroot, etc. and edited the config files by hand. When that didn't work, I erased the server and started over using Webmin to build everything for me. Same result. I want to setup and verify everything is working on this new server before I take it into production.This is in /var/log/messagesQuote:
Jun 13 21:33:20 dns1 named[13838]: starting BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 -u named
Jun 13 21:33:20 dns1 named[13838]: adjusted limit on open files from 1024 to 1048576
[code]...
View 13 Replies
View Related
Mar 29, 2010
Brand new network, just installed, all ubuntu 9.10 boxes connected to a Dell 2206 dumb gigabit switch, and from there to Dlink router to cable modem. Pretty simple. ISP confirms great link out and inbound,
However, http requests can sit for 20-30 seconds (sometimes longer), before content returns, same for pings.
Some thought it might be MTU-related. What is best MTU setting 1500/1492/ ?
View 6 Replies
View Related
Aug 2, 2010
Due to my problem getting F13 installed on my main desktop PC I thought I'd give the live CD a go in an old laptop:
Toshiba Satellite 1400-103, 512 MB RAM
This time I at least got to the desktop, however firefox will not connect to any website (and I've tried dozens)
However if i open up a terminal I can ping the websites that were not connecting, e.g.
Code:
So it does not appear to be a DNS problem (and other win boxes on my router connect fine)
Is it even worth proceeding with the F13 install at this stage?
View 4 Replies
View Related
Feb 26, 2011
I have two network interfaces and their entries are shown as eth0 and eth1... I want to assign them static IPs which I do by
ifconfig eth0 192.168.9.245 netmask 255.255.0.0 up
ifconfig eth1 192.168.8.245 netmask 255.255.0.0 up
But I am not sure if it will ping both the interfaces if I issue a command
ping -I eth0 192.168.9.113 (machine in network)
ping -I eth1 192.168.9.113 (machine in network)
I am getting pings from eth0 but not from eth1
View 10 Replies
View Related
Feb 27, 2010
I am a new learner. I need a simple scripts that compute the average ping time for hosts, and the average number of hosts that respond to pings during a traceroute. I have finished the ping part but I confused how to start the traceroute part
Code:
#!/bin/bash
#!/bin/sh
txt=$*
count=0;
for host in $txt; do
echo $host
echo $( ping -c 3 $host | grep avg | sed 's@.*=@ rrt ave =@' | sed -r 's@ = [^/]+/([^/]+).*@= 1 ms@')
done;
View 1 Replies
View Related
Jan 20, 2011
I have a Slackware 13.0 server that is not replying to icmp pings. However, I have double checked that /proc/sys/net/ipv4/icmp_echo_ignore_all is set to 0. The weird thing is I can run nc -v slackware 22 from any computer on my lan and the banner comes up just fine. The nic is on the same netmask and broadcast as all the other computers on my lan. I can log into it as well, it just doesn't respond to pings. I can even ping other computers and get replies just fine when pinging from inside the Slackware server.
I have even added an iptables INPUT rule for -p icmp -j ACCEPT. Although I've never had to do this. I ran tcpdump -vv icmp and I can see ping requests coming into the computer, however slackware simply doesn't respond. What could be causing this? A corrupt arp cache? It's been happening for more than a few hours so I wouldn't think so. How can I view the arp cache table? How do I clear it?
View 5 Replies
View Related
Mar 25, 2011
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
View 9 Replies
View Related
May 18, 2010
I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
View 3 Replies
View Related
Sep 15, 2010
I am running Debian Lenny and just upgraded via "apt-get upgrade" yesterday and all appears to be fine, except I noticed that when I ping something from a terminal window, it only displays successful pings and does not show the failed ones. When the pings fail, I have to "Ctrl-C" to see the results and cannot see them in real-time. It's not a huge problem, but I'd still like to be able to see immediate results even when pings fail.
Example is below:
(Username and host name changed to protect the innocent; or due to being overly paranoid, whichever).
Failed -
View 6 Replies
View Related
May 27, 2011
I'm trying to build firewall on Debian with 'Firewall Builder'. But it won't let me compile and run unless one interface is set as management. There are two interfaces on my computer: 'eth0' and 'lo'
I don't want to be able to configure firewall remotely, so could I use 'lo' as 'management interface'?
View 1 Replies
View Related
May 9, 2011
Can we use iptables as firewall instead of Juniper firewall
View 2 Replies
View Related
Jul 14, 2010
I've got a machine running Ubuntu Server that is on several VLANs. Each VLAN has its own subnet and the server has an address on each subnet. The switches are set to allow tagged traffic to the server for each VLAN that it is on. Switch ports ending with workstations are given untagged ports on whatever VLAN is appropriate. Workstations are given addresses on a subnet for each VLAN via DHCP. All this works great and hosts on any subnet/VLAN can access the server as normal via its address on that subnet/VLAN.
Accessing the machine by its address on a non-local subnet is where I run into a problem. Inter-subnet traffic has to go through a router, which has been set up appropriately. Running tcpdump on the server and pinging it from a workstation on a subnet, using its address on a different subnet, shows the server receives the ping, but sends no response:
Code:
sudo tcpdump -i vlan4 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
[code]...
View 8 Replies
View Related
Aug 10, 2010
I'm making a program that uses Scapy to sniff for a packet being sent to a certain host, then sending another packet with the Ethernet, IP and TCP headers identical, but a different payload.Whenever I try to run this, however, I get these errors:Code:WARNING: No route found for IPv6 destination :: (no default route?)WARNING: Mac address to reach destination not found. Using broadcast.Does anyone know what I can do to fix these problems?
View 2 Replies
View Related
Apr 26, 2011
Which of these (if any) are correct?
cp -r /var/www/vhosts/niftyfiftyparty.com/httpdocs/sites/all/modules/*.* /var/www/vhosts/keylargodivecenter.com/httpdocs/sites/all/modules/*
in /var/www/vhosts/niftyfiftyparty.com/httpdocs/sites/all/modules/
cp -r *.* /var/www/vhosts/keylargodivecenter.com/httpdocs/sites/all/modules/*
in /var/www/vhosts/keylargodivecenter.com/httpdocs/sites/all/modules/
cp -r /var/www/vhosts/niftyfiftyparty.com/httpdocs/sites/all/modules/*.* *
Both the source and destination folders are valid. There are several folders in the niftyfiftyparty modules folder that I need in the other one.
View 2 Replies
View Related
Jul 12, 2011
Can I change the destination for hidden files that are in the Home Directory? I'd like to put all the hidden files in my Home directory into a seperate folder inside of Home. (10.04)
View 9 Replies
View Related
May 26, 2010
When I use the cp or mv command to copy/move files is there a way for me to have the destination file assume the same name of the source file, however add an additional suffix.
For example
Code:
Now what if I wanted this...
Code:
Do I have to type the destination file out manually everytime? or is there a quick way for the cp or mv command to assume the source file name and add the .bak
View 5 Replies
View Related
Jul 26, 2010
Samba is working correctly if Susefirewall2 is off. I have added Samba client and Samba Services for extern access but samba is not working when firewall is now on. Which services should I also add ?
View 1 Replies
View Related
Jan 20, 2010
I'm trying to shape bandwidth using HTB method and filtering classes with destination mac address. for this I've found two codes but none of them seem to filter bandwidth as i want (test with iperf) can some one explain me the problem with theses codes
Code:
tc qdisc add dev eth0 root handle 1: htb
tc class add dev eth0 parent 1: classid 1:1 htb rate 1000kbit ceil 1000kbit
tc filter add dev eth0 parent 1: protocol ip prio 3 u32 match u16 0x0800 0xFFFF at -2 match u16 0xM4M5 0xFFFF at -4 match u32 0xM0M1M2M3 0xFFFFFFFF at -8
code2:
[Code]...
View 1 Replies
View Related
Mar 23, 2010
I am playing around with transparent proxies, The current way I am doing things is the program makes a request to a computer on port 80, I use
Code:
iptables -t nat -A OUTPUT -p tcp --destination-port 80 -j REDIRECT --to-port 1234 to redirect to my proxy that I am playing with. the proxy will send out a request to port 81 (as all outbound port 80 are being fed back in to the proxy) so I want to do something like
Code:
iptables -t nat -A OUTPUT -p tcp --destination-port 81 -j DNAT --to-destination xxxx:80 The problem lies with the xxxx part. How do I change the destination port without changing changing the destination ip? Or am I doing this setup completely wrong,
View 2 Replies
View Related