[FreeBSD] ipfw ve kurallar...
Arkadaşlar pf.conf un içeriği şu şekilde
**
ext_if=le0
ext_ip={10.0.0.19, 10.0.0.20}
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80,
21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
ve /etc/inetd.conf 127.0.0.1:8021 stream tcp nowait root
/usr/libexec/ftp-proxy ftp-proxy -t 300 -A -u proxy bunu girdim fakat
halen internet explorerdan erisilmiyor ftp ye pass mode tarzı bir sorun var
galiba sorunu cozemedim gitti :(
Re: [FreeBSD] ipfw ve kurallar...
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $int_if proto tcp from any to any port 21 - 127.0.0.1 \
port 8021
Sinan yazmış:
Arkadaşlar pf.conf un içeriği şu şekilde
**
ext_if=le0
ext_ip={10.0.0.19 http://10.0.0.19, 10.0.0.20 http://10.0.0.20}
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22,
80, 21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53
keep state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53
keep state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to
any port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to
any port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to
any port 1023 modulate state
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
ve /etc/inetd.conf 127.0.0.1:8021 http://127.0.0.1:8021 stream
tcp nowait root/usr/libexec/ftp-proxy ftp-proxy -t 300 -A -u
proxy bunu girdim fakat halen internet explorerdan erisilmiyor
ftp ye pass mode tarzı bir sorun var galiba sorunu cozemedim gitti :(
--
Bâkır EMRE
EnderUNIX Core Team Member
http://www.enderunix.org
FreeBSD 6 kitabi: http://www.acikakademi.com/catalog/freebsd6
-
Listeye soru sormadan once lutfen http://ipucu.enderunix.org sitesine bakiniz.
Cikmak icin, e-mail: [EMAIL PROTECTED]
Liste arsivi: http://news.gmane.org/gmane.org.user-groups.bsd.turkey
[FreeBSD] freebsd + php ve MSsql
Mssql sunucuya freebsd üzerinde kurulu phpye mssql desteği vermeme rağmen bağlanamıyorum. Aldığım hata bu Event Type: Error Event Source: MSSQLSERVER Event Category: (2) Event ID: 17052 Date:4/7/2008 Time:11:39:43 AM User:N/A Computer: BIM Description: Error: 17832, Severity: 20, State: 7 Connection opened but invalid login packet(s) sent. Connection closed. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: : a8 45 00 00 14 00 00 00 ¨E.. 0008: 04 00 00 00 42 00 49 00 B.I. 0010: 4d 00 00 00 00 00 00 00 M... Apache sunucu aldığım hata ise database e bağlanamadı hatası. Sorun ne olabilir? ve bağlanmak için ne yapabilirim? İyi çalışmalar... Mesut GÜLNAZ
RE: [FreeBSD] freebsd + php ve MSsql
MSSQL in kurulduğu disk te yani c:\ de 32,5 GB Data file ların olduğu D:\ de ise 102 GB yer var. İşin ilginç tarafı test için kullandığım php kurulu olan bir MS makinede de başlangıçta bağlanamadım. Ancak bu test makineme MSsql 2000 kurduğumda bağlanır oldu? Neden olabilir? From: timur akçay [mailto:[EMAIL PROTECTED] Sent: Monday, April 07, 2008 1:35 PM To: freebsd@lists.enderunix.org Subject: Re: [FreeBSD] freebsd + php ve MSsql event id kodunu aratınca şöyle bir şey geldi karşıma. http://sistemdoktoru.com/forums/post/34379.aspx 07.04.2008 tarihinde Mesut GÜLNAZ [EMAIL PROTECTED] yazmış: Mssql sunucuya freebsd üzerinde kurulu phpye mssql desteği vermeme rağmen bağlanamıyorum. Aldığım hata bu Event Type: Error Event Source: MSSQLSERVER Event Category: (2) Event ID: 17052 Date:4/7/2008 Time:11:39:43 AM User:N/A Computer: BIM Description: Error: 17832, Severity: 20, State: 7 Connection opened but invalid login packet(s) sent. Connection closed. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: : a8 45 00 00 14 00 00 00 ¨E.. 0008: 04 00 00 00 42 00 49 00 B.I. 0010: 4d 00 00 00 00 00 00 00 M... Apache sunucu aldığım hata ise database e bağlanamadı hatası. Sorun ne olabilir? ve bağlanmak için ne yapabilirim? İyi çalışmalar... Mesut GÜLNAZ -- Timur 'Elik' Akçay [EMAIL PROTECTED]
Re: [FreeBSD] freebsd + php ve MSsql
event id kodunu aratınca şöyle bir şey geldi karşıma. http://sistemdoktoru.com/forums/post/34379.aspx 07.04.2008 tarihinde Mesut GÜLNAZ [EMAIL PROTECTED] yazmış: Mssql sunucuya freebsd üzerinde kurulu phpye mssql desteği vermeme rağmen bağlanamıyorum. Aldığım hata bu Event Type: Error Event Source: MSSQLSERVER Event Category: (2) Event ID: 17052 Date:4/7/2008 Time:11:39:43 AM User:N/A Computer: BIM Description: Error: 17832, Severity: 20, State: 7 Connection opened but invalid login packet(s) sent. Connection closed. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: : a8 45 00 00 14 00 00 00 ¨E.. 0008: 04 00 00 00 42 00 49 00 B.I. 0010: 4d 00 00 00 00 00 00 00 M... * * *Apache sunucu aldığım hata ise database e bağlanamadı hatası. Sorun ne olabilir? ve bağlanmak için ne yapabilirim?* * * *İyi çalışmalar...* * * *Mesut GÜLNAZ* -- Timur 'Elik' Akçay [EMAIL PROTECTED]
Fwd: [FreeBSD] ipfw ve kurallar...
Şimdide şu hatayı veriyor hocam, ...
ext_if=le0
ext_ip={10.0.0.19 , 10.0.0.20 }
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80,
21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $ext_if proto tcp from any to any port 21 - 127.0.0.1 \ port 8021
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
*
[EMAIL PROTECTED] ~]# pfctl -f /etc/pf.conf
/etc/pf.conf:17: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:18: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:19: Rules must be in order: options, normalization, queueing,
translation, filtering
pfctl: Syntax error in config file: pf rules not loaded
[EMAIL PROTECTED] ~]#
Re: [FreeBSD] ipfw ve kurallar...
Tabi en basta bir anchor tanımlaması gerekiyor onu eklemeyi unutmusum
anchor ftp-proxy/*
Bâkır EMRE yazmış:
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $int_if proto tcp from any to any port 21 - 127.0.0.1 \
port 8021
Sinan yazmış:
Arkadaşlar pf.conf un içeriği şu şekilde
**
ext_if=le0
ext_ip={10.0.0.19 http://10.0.0.19, 10.0.0.20 http://10.0.0.20}
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22,
80, 21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53
keep state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53
keep state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \
to any port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \
to any port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to
any port 1023 modulate state
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
ve /etc/inetd.conf 127.0.0.1:8021 http://127.0.0.1:8021 stream
tcp nowait root/usr/libexec/ftp-proxy ftp-proxy -t 300 -A -u
proxy bunu girdim fakat halen internet explorerdan erisilmiyor
ftp ye pass mode tarzı bir sorun var galiba sorunu cozemedim gitti
:(
FreeBSD 6 kitabi: http://www.acikakademi.com/catalog/freebsd6
-
Listeye soru sormadan once lutfen http://ipucu.enderunix.org sitesine bakiniz.
Cikmak icin, e-mail: [EMAIL PROTECTED]
Liste arsivi: http://news.gmane.org/gmane.org.user-groups.bsd.turkey
Fwd: [FreeBSD] ipfw ve kurallar...
Ekledim anchor ftp-proxy/* yi ama hocam sorun aynı yine
saygılar...
***
ext_if=le0
ext_ip={10.0.0.19 , 10.0.0.20 }
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80,
21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
anchor ftp-proxy/*
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $ext_if proto tcp from any to any port 21 - 127.0.0.1 \ port 8021
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
[EMAIL PROTECTED] ~]# pfctl -f /etc/pf.conf
/etc/pf.conf:18: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:19: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:20: Rules must be in order: options, normalization, queueing,
translation, filtering
pfctl: Syntax error in config file: pf rules not loaded
[EMAIL PROTECTED] ~]#
Re: [FreeBSD] ipfw ve kurallar...
hata alman gayet normal zaten hatanin ne oldugunuda soyluyor. pf'de rulelar
belli bir duzen icinde olmali Rules must be in order: options,
normalization, queueing, translation, filtering . Asagidaki sekilde
anchor rulelarini duzenlersen sorun olmayacaktir.
ext_if=le0
ext_ip={10.0.0.19 , 10.0.0.20 }
*anchor ftp-proxy/* *
*nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $ext_if proto tcp from any to any port 21 -
**127.0.0.1*http://127.0.0.1/
* \ port 8021*
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80,
21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
2008/4/7 Sinan [EMAIL PROTECTED]:
Ekledim anchor ftp-proxy/* yi ama hocam sorun aynı yine
saygılar...
***
ext_if=le0
ext_ip={10.0.0.19 , 10.0.0.20 }
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80,
21} keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port ftp modulate state
pass out log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
pass in log on $ext_if inet proto tcp from ($ext_if) port 1023 \ to any
port 1023 modulate state
anchor ftp-proxy/*
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr on $ext_if proto tcp from any to any port 21 - 127.0.0.1 \ port 8021
pass in on $ext_if proto tcp from any to any port 21 keep state
pass in on $ext_if proto tcp from any to any port 49151 \ keep state
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
[EMAIL PROTECTED] ~]# pfctl -f /etc/pf.conf
/etc/pf.conf:18: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:19: Rules must be in order: options, normalization, queueing,
translation, filtering
/etc/pf.conf:20: Rules must be in order: options, normalization, queueing,
translation, filtering
pfctl: Syntax error in config file: pf rules not loaded
[EMAIL PROTECTED] ~]#
Re: [FreeBSD] freebsd + php ve MSsql
mssql versiyonu ıle baglanmak icin kullandıgınız php fonksiyonu versiyonu örtüsmüyor olabilir daha cok programcılık hatasıymis gibi geliyor 2008/4/7 Mesut GÜLNAZ [EMAIL PROTECTED]: Mssql sunucuya freebsd üzerinde kurulu phpye mssql desteği vermeme rağmen bağlanamıyorum. Aldığım hata bu Event Type: Error Event Source: MSSQLSERVER Event Category: (2) Event ID: 17052 Date:4/7/2008 Time:11:39:43 AM User:N/A Computer: BIM Description: Error: 17832, Severity: 20, State: 7 Connection opened but invalid login packet(s) sent. Connection closed. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: : a8 45 00 00 14 00 00 00 ¨E.. 0008: 04 00 00 00 42 00 49 00 B.I. 0010: 4d 00 00 00 00 00 00 00 M... * * *Apache sunucu aldığım hata ise database e bağlanamadı hatası. Sorun ne olabilir? ve bağlanmak için ne yapabilirim?* * * *İyi çalışmalar...* * * *Mesut GÜLNAZ* -- http://fatihgenc.com
[FreeBSD] ipfw ve kurallar...
Aynı hatayi veriyor hocam denedim bunuda :(
Re: [FreeBSD] ipfw ve kurallar...
rulelari yazarsan kontrol edelim. 2008/4/7 Sinan [EMAIL PROTECTED]: Aynı hatayi veriyor hocam denedim bunuda :(
Fwd: [FreeBSD] ipfw ve kurallar...
Hocam pf.conf assadaki gibi bende proftpd yi kaldirdim sistemden ssh
uzerinden dosyalarımı gondericem su anda istediğim tek sey nmap yapilmamasi
sisteme portlar taranamasın onunla ilgili altaki ruler ı yaptım fakat nmap
-sT -O -P0 10.0.0.20 yaptiğimiz zaman yine acik olan portları gosterio bu
ruler da eksik ne var hocam sizce ek olarak ne eklemem gerekiyor bu nmap da
portlar gozukmesin die saygılar hocam...
*
ext_if=le0
ext_ip={10.0.0.19 , 10.0.0.20 }
scrub in all
pass quick on lo0 keep state
pass in quick on $ext_if inet proto tcp from any to $ext_ip port {22, 80}
keep state flags S/SA
pass in quick on $ext_if inet proto tcp from any to $ext_ip port = 53 keep
state flags S/SA
pass in quick on $ext_if inet proto udp from any to $ext_ip port = 53 keep
state
#default to deny
block in log all
block out log all
# Block bad tcp flags from malicious people and nmap scans
block in log quick on $ext_if proto tcp from any to any flags /S
block in log quick on $ext_if proto tcp from any to any flags /SFRA
block in log quick on $ext_if proto tcp from any to any flags /SFRAU
block in log quick on $ext_if proto tcp from any to any flags A/A
block in log quick on $ext_if proto tcp from any to any flags F/SFRA
block in log quick on $ext_if proto tcp from any to any flags U/SFRAU
block in log quick on $ext_if proto tcp from any to any flags SF/SF
block in log quick on $ext_if proto tcp from any to any flags SF/SFRA
block in log quick on $ext_if proto tcp from any to any flags SR/SR
block in log quick on $ext_if proto tcp from any to any flags FUP/FUP
block in log quick on $ext_if proto tcp from any to any flags FUP/SFRAUPEW
block in log quick on $ext_if proto tcp from any to any flags SFRAU/SFRAU
block in log quick on $ext_if proto tcp from any to any flags SFRAUP/SFRAUP
block in log quick on $ext_if proto tcp all flags FUP/FUP
pass out quick on $ext_if inet proto tcp all modulate state flags S/SA
pass out quick on $ext_if inet proto { udp, icmp } all keep state
block in quick all
block out quick all
[FreeBSD] FreeBSD diski linux sistemde check etme
FreeBSD 6.2 kurulu makine şimdi tam hatırlayamadığım bir disk hatası yüzünden açılmıyordu. Diski söküp linux yüklü bir makineye taktım. Diski görüyor ancak usr, bin, var gibi dizinlerin içeriğini göstermiyor. Ayrıca bağlarken de SUPERBLOCK bulunamadı, bad magic number gibi hata mesajları veriyor. Bu diski (ufs) linuxta tanılayıp onarmama yardımcı olabilecek bir yöntem ya da program önerebilir misiniz?
[FreeBSD] RE: FreeBSD diski linux sistemde check etme
Diski tekrar sunucuya takıp single user moda açıp fsck yaparak sorunu çözdüm. FreeBSD 6.2 kurulu makine şimdi tam hatırlayamadığım bir disk hatası yüzünden açılmıyordu. Diski söküp linux yüklü bir makineye taktım. Diski görüyor ancak usr, bin, var gibi dizinlerin içeriğini göstermiyor. Ayrıca bağlarken de SUPERBLOCK bulunamadı, bad magic number gibi hata mesajları veriyor. Bu diski (ufs) linuxta tanılayıp onarmama yardımcı olabilecek bir yöntem ya da program önerebilir misiniz? FreeBSD 6 kitabi: http://www.acikakademi.com/catalog/freebsd6 - Listeye soru sormadan once lutfen http://ipucu.enderunix.org sitesine bakiniz. Cikmak icin, e-mail: [EMAIL PROTECTED] Liste arsivi: http://news.gmane.org/gmane.org.user-groups.bsd.turkey
Re: [FreeBSD] RE: FreeBSD diski linux sistemde check etme
Cahit Güçlü wrote: Diski tekrar sunucuya takıp single user moda açıp fsck yaparak sorunu çözdüm. FreeBSD 6.2 kurulu makine şimdi tam hatırlayamadığım bir disk hatası yüzünden açılmıyordu. Diski söküp linux yüklü bir makineye taktım. Diski görüyor ancak usr, bin, var gibi dizinlerin içeriğini göstermiyor. Ayrıca bağlarken de SUPERBLOCK bulunamadı, bad magic number gibi hata mesajları veriyor. Bu diski (ufs) linuxta tanılayıp onarmama yardımcı olabilecek bir yöntem ya da program önerebilir misiniz? FreeBSD 6 kitabi: http://www.acikakademi.com/catalog/freebsd6 - Listeye soru sormadan once lutfen http://ipucu.enderunix.org sitesine bakiniz. Cikmak icin, e-mail: [EMAIL PROTECTED] Liste arsivi: http://news.gmane.org/gmane.org.user-groups.bsd.turkey Linux ufs'e rw destegi vermiyordu degilmi? FreeBSD 6 kitabi: http://www.acikakademi.com/catalog/freebsd6 - Listeye soru sormadan once lutfen http://ipucu.enderunix.org sitesine bakiniz. Cikmak icin, e-mail: [EMAIL PROTECTED] Liste arsivi: http://news.gmane.org/gmane.org.user-groups.bsd.turkey
