At 12:10 AM 6/5/2001 -0500, Eric LaMunyon wrote:
>Does anyone have a basic iptables script for a webserver with direct
>connection to the internet(1 nic), that blocks most dos, ping of death,
>etc?
>
>Anything would be helpful.
>
http://muse.linuxmafia.org/gshield.html
http://www.tlsecurity.net
Does anyone have a basic iptables script for a webserver with direct
connection to the internet(1 nic), that blocks most dos, ping of death,
etc?
Anything would be helpful.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Hi all,
Without no apparent reason, I started receiving thousands of packets to one
of the interfaces. The network card is an rtl8029, and I logged between 70 and
80.000 packacges per second. They all where too big to be ethernet packets,
and they were reported by the kernel as:
Jun 4 12:20:15 n
> I was thinking of setting up a scanner (strobe/nmap/...?) to
> automatically do a scan from a cron and mail the results to me. However,
> is there any existing framework like this that I could leverage?
>
Nessus can be tweaked to be able to report on a daily basis, its
reports (includ
5 legs? The author of that one ought to take biology one more time..
> -Original Message-
> From: Adam Olsen [mailto:[EMAIL PROTECTED]]On Behalf Of
> Adam Olsen
> Sent: Sunday, June 03, 2001 1:37 AM
> To: [EMAIL PROTECTED]
> Subject: Re: a FISH?!?!
>
>
> On Sun, Jun 03, 2001 at 08:27:1
As modules? Have you loaded them?
On Sat, Jun 02, 2001 at 12:02:04AM +0200, Luc MAIGNAN wrote:
> Hi,
>
> I did : 'netstat -M' and netstat told me : there is no support for
> ip_masquerade on this system'.
>
> But I have compiled my kernel with FULL NAT - including all masquerade
> options - (
Hi.
U're using kernel version 2.4.x, and iptables - so thereis no support for command
ipchains -M -L, and netstat -M
ip_masquerade entries are in
/proc/net/ip_conntrack and I don't know how to list them by utility ( maybye ipnatctrl
)
Best regards
--
Aleksander Iwanski <[EMAIL PROTECTED]>
On Sun, Jun 03, 2001 at 11:39:29PM +0200, Luc MAIGNAN wrote:
> HI all,
>
> I have an internet connection on eth0 (10.0.0.1) and a private network
> connection on eth1 (192.168.0.1).
>
> I put the masquerade configuration on a kernel 2.4.4 :
>
> iptables -t nat -s 192.168.0.0/24 -o ppp0
Previously Dominik 'IronHand' Dalek wrote:
> Writing man page before options parser isn't the best idea though ;)
Actually it is a good idea: it indicates that you know exactly
what you are going to write and given that some good thought.
Wichert.
--
__
As modules? Have you loaded them?
On Sat, Jun 02, 2001 at 12:02:04AM +0200, Luc MAIGNAN wrote:
> Hi,
>
> I did : 'netstat -M' and netstat told me : there is no support for
> ip_masquerade on this system'.
>
> But I have compiled my kernel with FULL NAT - including all masquerade
> options -
Previously Dominik 'IronHand' Dalek wrote:
> Writing man page before options parser isn't the best idea though ;)
Actually it is a good idea: it indicates that you know exactly
what you are going to write and given that some good thought.
Wichert.
--
_
11 matches
Mail list logo
