On Sun, 24 Feb 2002, Klmn Czibk wrote:
I work a multi-place wide network with windows clients, firewalling
Debian. My problem is to solve pass through the firewall H323 protocol
or any other video conferencing uses 3 ports (video,audio,commands)
the best way is Netmeeting. I use NAT. I have
On Thu, 16 May 2002, Michael Renner wrote:
On Thursday 16 May 2002 14:24, Frederik Schueler wrote:
Hi,
On Thu, May 16, 2002 at 10:34:15AM +0200, Michael Renner wrote:
The module 'ip_nat_irc' is loaded, I gave the parameters
options ip_conntrack_irc ports=,,6667,6668,6669,7000
On Tue, 21 May 2002, Raffael Ferenc wrote:
If you use NAT, you have to load in the IRC nat helper module with the
same parameters as you used at the IRC conntrack helper.
IMHO DCC uses random unprivports, so you have to enable all ports
between 1025 and 65535 for the target ip address.
On Tue, 14 Sep 2004, Lorenzo Rossi wrote:
i have a question concerning the tables where are maintained the
informations about the connections state.
I configured my firewall script with the following lines, to permit the
SSH traffic originated from the protected zone to go to Internet.
On Tue, 4 Jul 2006, martin f krafft wrote:
Many people have rules like
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 --syn -j ACCEPT
I've done research and found that
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
On Tue, 4 Jul 2006, martin f krafft wrote:
also sprach Jozsef Kadlecsik [EMAIL PROTECTED] [2006.07.04.1130 +0200]:
is the same, meaning that the INVALID state matches all non-SYN
packets at this point.
That's plain false: the INVALID state does not match all non-SYN packets
On Tue, 4 Jul 2006, martin f krafft wrote:
also sprach Jozsef Kadlecsik [EMAIL PROTECTED] [2006.07.04.1143 +0200]:
That is false, because from connection tracking point of view a plain ACK
packet which does not belong to any existing connections has got a state,
which is NEW. That is why
7 matches
Mail list logo