Il giorno ven, 06/12/2024 alle 13.40 +0100, Matt Darfeuille ha scritto:
> You realy need to move away from Shorewall and Iptables.
What does this sentence mean?
That we need to stop using shorewall and switch to another firewall
manager, such as ufw or firewalld?
Let's us know
Thanks
Dario
_
Il giorno sab, 02/04/2022 alle 18.18 +0200, Simon Matter ha scritto:
> So, what speed do you get when you check on the firewall itself?
I have install and run speedtest-cli, this is last check:
Testing download
speed
Il giorno sab, 02/04/2022 alle 10.37 +0200, Simon Matter ha scritto:
> I'd suggest to check with ethtool if all interfaces are really on
> 1Gbps.
> This sound like you have a 100Mbps somewhere.
This is ethtool output[1]
the only difference compared to another server where I don't have these
probl
Thank Harold
My system is:
Machine:
- Dell PowerEdge T330 06FW8M v: A00
- BIOS: Dell v: 2.2.3 date: 08/17/2017
CPU:
- Info: quad core Intel Xeon E3-1240 v6 [MT MCP] speed (MHz): avg:
1621 min/max: 800/4100
Network:
- Device-1: Broadcom NetXtreme BCM5720 2-port Gigabit Ethernet PCIe
driver: t
Il giorno ven, 01/04/2022 alle 14.44 -0400, Robert K Coffman Jr. -Info
>From Data Corp. ha scritto:
> Do you have any traffic shaping configured?
No, it is not configured
cat /etc/shorewall/tc* | grep -v '^#'|wc -l
0
> >
> > Seem that the firewall pass through limited the traffic speed to
> > 1
Il giorno ven, 01/04/2022 alle 19.25 +0100, Ruth Ivimey-Cook ha
scritto:
> Have you checked that not only are the NICs capable of running at
> 1Gbit but they in fact are running at that speed? Not so long ago I
> had a cable that while supposed to be cat5e was in fact running at
> 100Mbit (presumab
at the firewall pass through limited the traffic speed to 100
Mbit/s
Someone can suggest me what I can check in order to resolve this issue?
Many thanks to All
--
Dario Lesca
(inviato dal mio Linux Fedora 35 Workstation)
___
Shorewall-users mailin
On my rocky Linux 8 sorewall logs are write into /var/log/messages and
into journalctl.
It's possible, and how to do, disable logging into journalctl and to
leave only loggin into /var/log/messages ?
Many thanks.
--
Dario Lesca
(inviato dal mio Linux Fedora 34 Workst
dev="tmpfs" ino=56603
scontext=system_u:system_r:shorewall_t:s0
tcontext=system_u:object_r:var_lock_t:s0 tclass=file
type=AVC msg=audit(1513547387.758:1606): avc: denied { write } for
pid=17405 comm="touch" name="shorewall" dev="tmpfs" ino=56603
sc
Thanks
Dario
> On 12/15/2017 9:56 AM, cac...@quantum-sci.com wrote:
> >
> > /run is cleared on every boot so a restorecon wouldn't last. If a reboot
> > doesn't fix it, it's likely a problem in a script of
> > the repo.
> >
> > OP doesn'
apparently everything works well
Many thanks
--
Dario Lesca
(inviato dal mio Linux Fedora 27 Workstation)
--
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdo
Il giorno lun, 03/07/2017 alle 14.43 +0200, Dario Lesca ha scritto:
> Hi, I must enable QoS in shorewall-4.5.4 on a Centos 6
>
> I have setup a IPSEC tunnell with provider, in which must transit
> only VoIP traffic.
> Now I can Ping and access to the contact center, and it can acc
t way?
Many thanks
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
--
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.lin
Il giorno lun, 22/05/2017 alle 07.35 -0700, Tom Eastep ha scritto:
> This is Shorewall FAQ 2 - http://www.shorewall.net/FAQ.htm#faq2
Work!
Thanks!
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
--
Ch
.org" to the local IP
192.168.1.1?
Many thanks for reply
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
--
Check out the vibrant tech community on one of the world's most
engaging
rather than masq.
Ok, thanks
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
--
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slas
6687 Dec 21 22:15
./usr/share/man/man5/shorewall-masq.5.gz
5464 blocks
In this way, the file masq is not installed into /etc/shorewall, only the man
page is installed
How to I can resolve this issue?
Many thanks
--
Dario Lesca
(inviato dal mio Linux F
eatly appreciated.
Could it be a problem with SELinux? See into /var/log/audit/audit.log
I have found this old message:
https://lists.centos.org/pipermail/centos/2013-February/132567.html
Hope this help
--
Da
hanks Tom! ... I owe you a glass of wine from my vineyard ;-)
Ciao.
--
Dario Lesca - sip:da...@solinos.it
(Inviato dal mio Linux Fedora 17 Gnome3)
--
Master HTML5, CSS3, ASP.NET, MVC, AJAX, Knockout.js, Web API and
much m
Il giorno ven, 11/01/2013 alle 08.23 -0800, Tom Eastep ha scritto:
> If you send me the real IP address of your server, I'll take a look
> from this end
I have send you IP and test account, and some other output.
Let me know
Thanks
> .
--
Dario Lesca - sip:da...@solinos.it
(I
Il giorno ven, 11/01/2013 alle 07.05 -0800, Tom Eastep ha scritto:
> On 01/11/2013 05:45 AM, Dario Lesca wrote:
> > Hi, I have a web/ftp server into DMZ via proxy arp behind a shorewall
> > 4.4.x firewall.
> >
> > All work fine, also FTP in passive mode, but not in act
--
Dario Lesca - sip:da...@solinos.it
(Inviato dal mio Linux Fedora 17 Gnome3)
--
Master HTML5, CSS3, ASP.NET, MVC, AJAX, Knockout.js, Web API and
much more. Get web development skills now with LearnDevNow -
350+ hours of step-by
Il giorno gio, 19/07/2012 alle 07.02 -0700, Tom Eastep ha scritto:
> You can set BLACKLISTNEWONLY=No in shorewall.conf.
>
> -Tom
Thanks Tom!
(especially thanks for your excellent work and availability)
>
--
Dario Lesca - sip:da...@solinos.it
(Inviato dal mio
What am I doing wrong?
It's possible, after a shorewall drop IP, delete the alive connection
for the dropped IP?
Many thanks for reply
--
Dario Lesca - sip:da...@solinos.it
(Inviato dal mio Fedora Linux)
--
Liv
24 matches
Mail list logo
