IRC Logs

  Linux | FreeBSD | Gentoo | PHP | Python | MySQL

IRC Networks

*freenode (41)
* EFnet
* QuakeNet
* Dalnet
* IRCnet

Irc Logs Stats

Start date: 2007-09-27 02:48:27
Last update: 2008-10-24 20:19:38
Channels: 41
Logged Lines: 6230436
Size: 1825.87 MB

Powered by

Powered by Linux Powered by Apache
Powered by PHP Powered by MySQL
Powered by Python The GIMP
Developed in Quanta Plus Vim the editor

Channel Info

Network: freenode

Channel: #iptables

Search in www.irclog.org

 

Log from #iptables at freenode 2006-05-17

Pages: 1 2 Next >

[00:40]<vuzymmu>http://www.rafb.net/paste/results/9Fhzbq15.html
[00:40]<vuzymmu>that is my current iptables script, can anyone tell me what im doing wrong to help prevent DDos attacks
[00:40]<rvdrv>actually
[00:41]<rvdrv>you can't avoid ddos attacks, and you can't prevent, and if it's a true ddos attack you're just fucked up.
[02:03]<-- rjrvcxrrr xrs fuy>http://www.jpg.com")
[04:18]<vwnrcv>can ebtables be used on interfaces that are not part of a bridge?
[04:20]<mrrynfmr>I don't think so
[04:20]<mrrynfmr>you could create a one-interface bridge if you needed something that it does - what are you trying to do?
[04:21]<vwnrcv>damn, I just want filter rules on INPUT
[04:21]<vwnrcv>layer 2
[04:21]<mrrynfmr>-m mac --mac-source?
[04:21]<zj20>arptables?
[04:24]<vwnrcv>isn't arptables only for ARP packets?
[04:26]<vwnrcv>danieldg: mac source is a start. but thats only for addresses, nothing else
[05:20]<gf_pzgsymggvg>is someone awake?
[05:21]<gf_pzgsymggvg>i think i have an iptables problem
[05:21]<gf_pzgsymggvg>ACCEPT udp -- anywhere anywhere udp dpt:1194
[05:21]<gf_pzgsymggvg>i made this rule
[05:21]<gf_pzgsymggvg>but when i do netcat on it
[05:21]<gf_pzgsymggvg>i cant get through
[05:21]<gf_pzgsymggvg>nor my openvpn server accepts connections
[05:26]<mrrynfmr>maybe you have another rule above it?
[08:55]<[adddd]> .-""""-. IF THERE IS A MEMBER OF
[08:55]<[adddd]> / \ THE HUMAN RACE DIRECTLY
[08:55]<[adddd]> /_ _\ DESCENDING FROM THE
[08:55]<[adddd]> // \ / \\ ALIENZ, THEN THAT RACE
[08:55]<[adddd]> |\__\ /__/| WOULD PROBABLY BE
[08:55]<[adddd]> \ || / FROM ASIA
[08:55]<[adddd]> \ /
[08:55]<[adddd]> \ __ / >>THE ALIENZ ARE COMING<<
[08:55]<[adddd]> '.__.' >>OOOOOHHH<<
[08:55]<[adddd]>
[11:56]<-- sgvgzs xzs fuyv (>/dev/brain")
[11:56]<mycnpnz>hello. I need to forward DNS requests from the local network to the internet. which rules in forward do I need?
[12:15]<mycnpnz>I tried udp dest 53 but it don't work
[12:17]<-- wgrvwsygc wrs puy>3) bad = 1;")
[12:36]<mycnpnz>thanks. at least a compassionate soul :)
[12:53]<dzzyjjfyvnyzz>hi i need help testing my firewall
[13:27]<-- sgvgzs xzs fuyv (>/dev/brain")
[15:24]<rrffnn>hi, can anyone tell me whether portforwarding is possible from interface 1 on a box to another interface?
[15:25]<rrffnn>i am doing nat and packets coming on on ppp0 port 443 shall be forwarded to the same box interface eth0 port 1100
[15:25]<rrffnn>however a "classical forward" doesnt work
[15:26]<mycnpnz>sounds like you should use the 'mangle' table
[15:32]<rrffnn>no
[15:32]<rrffnn>i am using nat
[15:35]<mycnpnz>well, but in the mangle table you can play around with packet internals like destination port
[15:41]<rrffnn>however i still do not get it why -j DNAT --to doesnt work on a the same box the packets hit in
[15:48]<zj20>callee: -j REDIRECT
[15:51]<rrffnn>rob0: thought about that as well
[15:52]<rrffnn>however,do i need any specific rules? like opening both ports in the input chain or soß
[15:56]<zj20>Open the rewritten port in INPUT.
[15:56]<zj20>Open=ACCEPT of course
[15:58]<zj20>You might have to bind the service on the ppp0 IP address, not sure.
[15:58]<rrffnn>rob0: thats the target port and where to open it? (input, forward, both?)
[15:58]<rrffnn>rob0: i do that binding anyway
[15:59]<rrffnn>thing is: where to open the target port (in which table/chain)
[15:59]<zj20>12:56 < rob0> Open the rewritten port in INPUT.
[16:00]<rrfmmjwg>hello
[16:00]<drwygn>hey, calmdown.
[16:00]<zj20>maxine: I am calm. ;)
[16:00]<drwygn>OK, rob0.
[16:00]<rrfmmjwg>maxine, rob0, haha hello
[16:00]<drwygn>calmdown: excuse me?
[16:01]<rrfmmjwg>maxine: just saying hello
[16:01]<drwygn>calmdown: huh?
[16:01]<zj20>who is maxine?
[16:01]<drwygn>well, i am the bot?
[16:01]<rrffnn>rob0: thx, works
[16:01]<rrfmmjwg>yeah
[16:01]<rrfmmjwg>bot smells fishy
[16:01]<rrfmmjwg>maxine smells fishy
[16:01]<drwygn>calmdown: sorry...
[16:01]<rrfmmjwg>haha
[16:01]<zj20>The bot is a lot of fun.
[16:01]<rrfmmjwg>i know
[16:02]<zj20>The bot?
[16:02]<drwygn>the bot is a lot of fun.
[16:02]<rrfmmjwg>you know what its running?
[16:02]<zj20>no
[16:02]<rrfmmjwg>calmdown is not calm
[16:02]<rrfmmjwg>calmdown?
[16:02]<drwygn>you are probably not calm
[16:02]<rrfmmjwg>hm
[16:02]<zj20>calmdown: calm down :)
[16:02]<rrfmmjwg>similar to mine but diff tweaks
[16:02]<rrfmmjwg>:( ok robo
[16:03]<sydjgzvg>maxine what are you?
[16:03]<drwygn>well, i am the bot?
[16:03]<sydjgzvg>maxine: help
Pages: 1 2 Next >

See also

Back to #iptables
Or go to some related logs:
#macosx
#gentoo
#debian
#cisco
#gentoo

Links

Buzly.com - All videos in one place

Standarts

Valid XHTML 1.0 Transitional
Valid CSS
Copyright (C) 2006 IRC Logs Archive,Contact