Hi,
I just noticed that firewall.sh, at least the version in the cent50 scripts
which I use, contains the following section:
## Drop outside packets with local addresses - anti-spoofing measure
iptables -A INPUT -s $MYIP -i ! lo -j DROP
iptables -A INPUT -s 127.0.0.0/8 -i ! lo -j DROP
#iptables
On 05/11/2010 06:30 AM, Martin Waschbuesch wrote:
Hi,
I just noticed that firewall.sh, at least the version in the cent50 scripts
which I use, contains the following section:
## Drop outside packets with local addresses - anti-spoofing measure
iptables -A INPUT -s $MYIP -i ! lo -j DROP
Hello List,
I need som help regarding iptables/firewall.sh
I have multiple virtual ipadresses, all official ip addresses. ( 5 ip adr
total)
I need to add those into the iptables and make the iptables to work as
usual, open for ssh, ftp, http, https, imap, pop3, smtp, submission, port
The only thing in firewall.sh that uses $MYIP is:
iptables -A INPUT -s $MYIP -i ! lo -j DROP
I expect that if you simply remove that line, it would work just fine.
Ole N.Johansen wrote:
Hello List,
I need som help regarding iptables/firewall.sh
I have multiple virtual ipadresses, all
Firewall related question.
If I execute
r...@myconsole# iptables -A INPUT -s 10.10.10.10 -j DROP
Does this amend the existing table? Does it add the entry to the top or
bottom of the file?
CJ
-
Qmailtoaster is
Maxwell Smart wrote:
Firewall related question.
If I execute
r...@myconsole# iptables -A INPUT -s 10.10.10.10 -j DROP
Does this amend the existing table? Does it add the entry to the top or
bottom of the file?
CJ
-A is the same as --append which means to add it to the end of the
Eric,
OK, that's exactly how I do it on all counts. I was just wondering if
there was an easier way. :)
What's the diff between service iptables restart and iptables-restore
/etc/sysconfig/iptables?
CJ
-
W dniu 31.07.2009 10:14, Ole N.Johansen pisze:
Hello List,
I need som help regarding iptables/firewall.sh
I have multiple virtual ipadresses, all official ip addresses. ( 5 ip
adr total)
I need to add those into the iptables and make the iptables to work as
usual, open for ssh, ftp, http,
Maxwell Smart wrote:
Eric,
OK, that's exactly how I do it on all counts. I was just wondering if
there was an easier way. :)
What's the diff between service iptables restart and iptables-restore
/etc/sysconfig/iptables?
CJ
The former does a save if configured to save before stop,
Thanks,
I figured it out with the help of Eric.
Just added a few more variables and it works good.
Ole
_
From: Aleksander Podsiadly [mailto:a...@westside.kielce.pl]
Sent: 31. juli 2009 19:16
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] Firewall.sh
W
Hi,
First of i would want to thank you. I am new here and
as i see qmailtoaster makes easier and faster.
I installed qmailtoaster on fresh Fedora Core 4
installs several times. Toaster works if i do not
install firewall.sh script. When i run the firewall.sh
script i can not connect to server PC
Hey bb,
The firewall script drops bogon networks by default. This means that
private ip addresses (10., 192.168., 172.16.) are ignored when using
firewall.sh.
You may just want to use the default firewall in FC4 and unblock the
ports used by the QmailToaster.
Erik
On 4/19/06, bb. [EMAIL
Also is it possible to disable imap/pop services from even starting when i run qmailctl start. I really do not need them, but will qmail need them running in order for me to do the following on the server:
If you dont want to start some services, just place a file named down in each supervise
I am trying to set up qmailtoaster on one of my servers to be used only
as smtp server that receives and processes emails into a mysql db and
allows https admin-toaster management.
I was updating the firewall.sh to block incoming imap, pop, popssl
etc.. and noticed the port 20/21 ftp incoming
Both port 20/21 and 113 are not necessary for QmailToaster operation.
I can't speak for Nick, but maybe he just left those ports open
because the machine he wrote the script for actually has an ftp and
ident server.
Erik
On 1/25/06, Alex [EMAIL PROTECTED] wrote:
I am trying to set up
15 matches
Mail list logo