Ubuntu :: Set The Firewall To Automatically Ban An Ip Address?
Dec 6, 2010How can I set the firewall to automatically ban an ip address when it scans my computer? something similar to configserver firewall for whm.
View 2 RepliesHow can I set the firewall to automatically ban an ip address when it scans my computer? something similar to configserver firewall for whm.
View 2 RepliesI have my firewall setup so that only specific subnets/IP addresses can access the system. My issue is that I have remote user/laptop who needs to access the system, but is constantly on a different subnet/dhcp IP address. Is there configuration for iptables where I can enter the mac address of the laptop to allow access to the system and not specify a subnet or IP address?
View 3 Replies View RelatedI have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.
View 5 Replies View Relatedhow to do surfing in ubuntu linux. Recently i took the new broadband internet connection, so i would like to configure and set the ip address in ubuntu linux, moreover i am able to connect to internet automatically in windows XP , here the ip address is configuring automatically. but when i started the ubuntu server, my ip address is not configuring automatically , i am unable to connect to internet in ubuntu server , which i have tested in specific firefox browser , saying that network was diconnnected, however i am able to see the network notification icon which has been displayed in top of the address bar , showing that ( X ) network disconnected.
how to get resolove this issue. and same way how to set and configure ip address in ubuntu server , so i should be able to do surfing in ubuntu linux. note : i think here broadband type connection is DHCP....
I use google search in the firefox address bar by pasting [url] in about:config > keyword.URL
But it automatically changes to "chrome://browser-region/locale/region.properties" in some hours or the next day and I cannot search using the address bar. I have to change it back again to make it work. This is really annoying.
I have 17 system (sys1,sys2,sys3.....sys17) in my office, and i am willing to setup a dedicated system to act as a firewall for that i have selected sys1 with two NIC(eth0 for local network and eth1 for internet) and i have configured to access internet in my office for that i have opened a wellknown port 80.but my clients are not accessing the internet..
and please check my sample IP configuration !!!
interface : eth1 (ISP IP)just for example
IP :192.168.0.2
gateway:192.168.0.1
dns:202.56.230.5
dns:202.56.230.6
Interface : eth0 (my local lan )
192.168.1.1
255.255.255.0
IP address of xp clients ranges form 192.168.1.2 to 192.168.1.16 with default 255.255.255.0
my question is that which gateway address and dns i have to give to my clients for accessing internet ?...
in our server, Fedora 10 64 bit in this,IP Address is automatically changing Actually IP Address is 192.168.1.50 it changing frequently.if i try to edit that to normal it is not showing options. net mask is also is changing from 255.255.255.0 to 24 After reboot the system ,through LAN it is accessible .But not through the network.
View 2 Replies View RelatedI have several computers at work running Fedora 12. From time to time I need to remotely connect to them, usually via ssh. Each computer is assigned an IP number automatically upon startup, however due to circumstances beyond my control they are not recognized by host name by the domain server. Therefore I require the IP addresses in order to connect rather than the host names. I have no way at present to rectify this situation.
When there is a reboot, I am not always guaranteed that the IP address will be the same as before, although in practice this is usually the case. If the IP address is changed and I am logging on remotely, I am unable to connect! I can't know the number until I am again physically sitting at the computer.
As a solution, I would like each computer to e-mail me its IP address each time it boots. My first attempt was to run a script at the end of /etc/rc.d/rc.local that runs ifconfig and places the output into a file. This file is then sent to my address using sendmail. The script works fine, but I note that the output from ifconfig at this boot stage does not contain an IP address! Obviously, it is being assigned later on in the startup process. Either that or the command ifconfig does not work the same at this stage as it does once I am logged in. I require somebody with more expertise than I to comment on that.
Finally then, my question is, at what point in the startup process is an IP address assigned and the output from ifconfig would contain this address? Is there a more appropriate place rather than rc.local in which I should run my script? Is there a more appropriate command rather than ifconfig that ought to be used instead?
---------- Post added at 05:41 PM CST ---------- Previous post was at 05:30 PM CST ----------
Let me show you my attempted solution in more detail in case you're interested. The script is called .SendIP.bash and is located in my home directory. Here's what it looks like (with some censoring to protect me from public ridicule):
#!/bin/sh
# This script will send ifconfig information to my e-mail account.
# This allows me to have the latest IP address assigned to this computer.
cd /home/MyUserName
hostname > .IPmessage
date >> .IPmessage
ifconfig eth0 >> .IPmessage
sendmail -f$HOSTNAME MyAddress@MyCompany.com < .IPmessage
As I stated above, the output from ifconfig does not contain the IP address when my script is called from rc.local.
I'm having difficulties mounting an FTP address to my file system automatically during boot. After a bit of research I have discovered a package called curlftpfs, I've installed this package using aptitude and I had no errors.
I've successfully mounted an FTP address manually using curlftpfs at the command line and proved to myself that this is working as it should...However, I can't get this to mount automatically and I am receiving the following error during boot when I try and mount it through /etc/fstab...
Error connecting to ftp: Failed to connect to (IP address of server): Network is unreachable
My research indicates this package should be able to do this.
I'm still a learner when it comes to Linux, but could this be because TCP/IP services are not started at the time of mounting the filesystems? I've tried a continuous ping at this computer whilst it is booting and I don't get a response until after /etc/fstab has been processed. If this is the reason, can I start them these processes earlier?
Another option would be to have a script/command run when the computer boots, but prior to MySQL loading. If this is possible, it would also satisfy my problems.
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
I'm trying to build firewall on Debian with 'Firewall Builder'. But it won't let me compile and run unless one interface is set as management. There are two interfaces on my computer: 'eth0' and 'lo'
I don't want to be able to configure firewall remotely, so could I use 'lo' as 'management interface'?
Can we use iptables as firewall instead of Juniper firewall
View 2 Replies View RelatedI am having trouble getting grub to automatically boot into ubuntu server. When I turn on my server the grub menu shows up and shows me the choices. They all work fine except that grub wont automatically select one. This wouldn't be too much of a problem but this is a headless server and I can't boot into ubuntu without a keyboard. I tried looking through the grub 2 documentation but nothing seemed to work when I edited the conf file.
View 1 Replies View RelatedIm an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
Quote:
[code]....
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
Currently my OS is Ubuntu 9.04 Jaunty Jackalope Desktop OS and my web server is Apache2. I have a public address 60.x.y.z and my pc local address is 10.x.y.z. I have a web app in my Apache2 which currently run in localhost(10.x.y.z).
I would like to enable the web app so that it could be browse from outside. I know there maybe some port forwarding process and some commands involved in order to do that. But I have no idea on the steps to do that.
Version 10.04 LTS. Installed desktop version and network worked but I needed a static IP address and the install configures for a DHCP configured address. I tried changing to static address using the System->Preferences->Network Connections application but was unable to get the system to come up with the network up.
So I manually modified the /etc/network/interfaces and the /etc/resolv.conf files. I restart the system but when I do an ifconfig, I don't see a configured IP address on eth0 (only the loopback address). If I run /sbin/ifup eth0 everything then works fine and ifconfig shows the correct address bound to eth0.
My files are as follows:
When I try to search for something in the main address bar It always adds the following with my input at the end
View 1 Replies View RelatedI'm running Ubuntu 10.10 and I'm having problems trying to assign it a static IP address. No matter what I put in the Preferences->Networking area (identifying the interface as Manual)... it still will query DHCP for an address if I run the dhclient command. I'm using to using ubuntu server where I just set the IP in the interfaces config file.
View 1 Replies View RelatedIf I give "ifconfig" in my laptop I get eth0,lo,wlan0.In that where do I find my Ip address in Ubuntu in 10.04. In eth0 I dont find inet address.Where can I find it?
View 2 Replies View Relatedwhat to do for lock automatically slackware 13 if not used for n minutes ?What can i do to start automatically the ktorrent (a bittorrent program for linux) on system starts on slackware 13 ?
View 2 Replies View RelatedSamba is working correctly if Susefirewall2 is off. I have added Samba client and Samba Services for extern access but samba is not working when firewall is now on. Which services should I also add ?
View 1 Replies View RelatedIn firefox you can type ubuntuforums and it will bring you here via a google query.Mines stopped working the address bar goes to http://ubuntuforums/ and I get a forbidden page.I've check about : config and all is set fine
Code:
Keyword.enable = true
Keyword.URL = http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
[code]....
i am pretty much brand new to ubuntu i have messed around with it a little and have gotten my apache2 server up and running what i have some questions on is
1. How can i give my server a actual address and not my ip address?
2. Is there any way i can put like forum software on part of it? if so how?
3. What is the best way to write web pages i know some html so thats how i was able to write what i have now just wondering what best way is
I am working on implementing a protocol on NS2.34 .I really need help to solve this problem . Actually , I don't now whether the problem is generated by the tcl code or the c++ code when I run the simulation, I get this result :
Code:
num_nodes is set 64
INITIALIZE THE LIST xListHead
34
45
channel.cc:sendUp - Calc highestAntennaZ_ and distCST_
highestAntennaZ_ = 1.5, distCST_ = 550.0
SORTING LISTS ...DONE!
code....
I want to pass ip address,port address and some parameters from command line using python script.The ip address and port address for establishing socket connection and remaining parameters to execute different connection.
View 1 Replies View Relatedif i attach a shared memory to my process whch part of the address space it will add(like stack, heap, data, code...).
View 3 Replies View RelatedConsider the following program:
Code:
#include <stdio.h>
#include <stdint.h>
[code]...
I need a small shell based program that prints the mac address of physical ethernet adapter from it's firmware. I need this utility for license generation and appliance activation. I have tried several example but none of them is flawless, The easiest method I have found is to parse the output of "ifconfig" command but it has also some drawbacks.
1. Firstly program should differentiate between physical and virtual adapters. Physical means installed on board(wired or wireless) or installed additionally. Virtual adapters are those created by VPN or created by virtualization apps such as VirtualBox/VMWare etc. I am not interested in virtual ones.
2. In case of more them one physical adapters(wired and wireless), it should print the mac address and description(name & vendor) of both/all adapters.
3. If media is disconnected then also it should be able to read the mac address and description(name, vendor) of card.
4. This one is bit complex. I know that 'ethtool' can show you the universal mac address but it's limited to use only 2 types of drivers and won't work in all cases.
I am running my own Postfix mail server. Some time ago I noticed that most email was rejected because of the server's dynamic IP address. So I got a fixed IP address. However then I noticed that some mails got rejected due to failing the reverse DNS check. So my ISP told me to get a range of IP addresses and they could then create a PTR record for one of those addresses. That is now running but it turns out that the IP address used for the PTR record is a ... dynamic IP address. So Spamhaus PBL rejects my emails again.
View 1 Replies View Related