IRC Networks
Irc Logs Stats
Start date: 2007-09-27 02:48:27
Last update: 2008-10-24 20:19:38
Channels: 41
Logged Lines: 6230436
Size: 1834.79 MB
Powered by
Channel Info
Network: freenodeChannel: #iptables |
Search in www.irclog.org
Log from #iptables at freenode 2006-05-22
[22:22]<zzrgmgg>but the one marked robw810 is gone
[22:22]<zzrgmgg>I belive
[22:22]<zj2wow0>http://slackwiki.org/Simplefirewall
[22:22]<zzrgmgg>That one I know
[22:22]<zj2wow0>http://slackwiki.org/Firewall-robw810
[22:23]<zj2wow0>Both from http://slackwiki.org/Category:Iptables_Scripts
[22:23]<zzrgmgg>ok
[22:24]<sara>robw810: http://ssh.7a69.co.uk/~temp/crap/
[22:24]<sara>err
[22:24]<zj20>Oh, danieldg has some good ones too.
[22:24]<sara>robw810: there :-\
[22:24]<zj20>I can't remember his URL but Google knows it.
[22:25]<zzrgmgg>ok
[22:25]<zj20>skac: there, there.
[22:26]<sara>i am tempted to reboot it
[22:26]<sara>so it flushs its rules.
[22:27]<sara>mmm
[22:27]<sara>ifconfig $IF
[22:27]<sara>just drop em all
[22:27]<zj20>ok, I'll try to figure it out in a minute, busy ATM
[22:27]<sara>and remove the rules mmm
[22:27]<sara>k
[22:27]<sara>;(
[22:28]<rsmw>how can i block some urls or port 80 with iptables via mac address?
[22:28]<drvvx_>god is that too complicated typing "man iptables"
[22:30]<zzrgmgg>robw810: I am using your simplefirewall. And It got the same problem as mine. I did put apache on 3000 to try the script.And I dont allow port 3000 incoming anywhere so it should not work right? I davent changed anything in yours except comment out line 12.
[22:30]<zzrgmgg>But it works to access apache on port 3000
[22:30]<zj20>granden: from where?
[22:30]<zzrgmgg>from a computer on the LAN
[22:31]<zj2wow0>Of course it does - that script only affects the external interface
[22:31]<zj2wow0>granden: see the tutorial in the topic :D
[22:31]<zzrgmgg>robw810: I know
[22:31]<zzrgmgg>but I only got one interface on my laptop
[22:31]<zzrgmgg>and it is connected to my router
[22:32]<zzrgmgg>so all connections will look like they are from the LAN
[22:35]<zj2wow0>That's impossible
[22:35]<zj2wow0>(are you sure you didn't have an existing connection to the webserver?)
[22:36]<zzrgmgg>robw810: yeah
[22:36]<zzrgmgg>I did restart apache on the other computer
[22:36]<zzrgmgg>as well
[22:36]<zzrgmgg>Strange now it is working on the lan but not when using my gcrl.info domain.
[22:36]<zzrgmgg>But the port is forwarded
[22:37]<zzrgmgg>and it is allowed in you script now
[22:37]<zj2wow0>granden: okay, now you should read the second url in /topic
[22:37]<zj2wow0>:D
[22:37]<-- sgvgzs xzs fuyv (>/dev/brain")
[22:39]<zzrgmgg>lol it says apache is down
[22:39]<zzrgmgg>maybe thats why I cant connect to it with the domain :)
[22:40]<sara>just rebooted and went back to my default setup.
[22:42]<sxzmnwzfcnz>rob0: just read up. Yeah, it worked like a charm, although I wasn't completely sure that any packets wouldn't go out. I'm a bit confused as far as destination/source is concerned.
[22:43]<sxzmnwzfcnz>Hi there skac.
[22:43]<sara>heya!!!
[22:43]<sara>use tcpdump.
[22:43]<sxzmnwzfcnz>Yikes, I hate that.
[22:43]<sara>O_o
[22:44]<sara>how do you do networking without it?
[22:44]<sxzmnwzfcnz>But, I guess you're right. I have Ethereal too. :)
[22:44]<sxzmnwzfcnz>Hehe.
[22:44]<sara>you have ethereal running on your router(s)?
[22:44]<sara>aka you run X on it/them?
[22:45]<sxzmnwzfcnz>I use it sometimes on my desktop.
[22:45]<sara>ah awesome.
[22:45]<sara>ngrep + tcpdump > ethereal
[22:45]<sxzmnwzfcnz>I just set up a Slackware box to work as a gateway/router two days ago.
[22:45]<sara>but each to there own :>
[22:45]<sara>cool cool
[22:46]<sara>my networking ability sucks donkey
[22:46]<sxzmnwzfcnz>Yeah, I knew next to nothing about NAT, but puzzled it out eventually.
[22:46]<sara>i am not sure if i put this gre tunnel up if its going to bone my routes again
[22:46]<sara>well it didn't bone them before
[22:47]<sara>but when i tryed to reroute packets from the LAN up it
[22:47]<sara>with iproute2 =\
[22:47]<sara>it had a spaz
[22:47]<sara>holdon lemme see if this will work lol
[22:47]<sara>i am going to delete my ip from my box
[22:47]<sara>see if i stay connected
[22:48]<sara>hello?
[22:48]<drwygn>Download MaxDB and MySQL now, skac!
[22:48]<sara>WOOT!
[22:49]<sara>wtfzor?
[22:49]<sara>i just did
[22:49]<sara>ifconfig eth0 del 192.168.1.50
[22:49]<sara>and it put my other ip on eth0
[22:49]<sara>and put *.50 on eth0:1
[22:49]<sara>O_+!O!111
[22:49]<sara>WTF?
[22:49]<sara>i did it again
[22:50]<sara>and it went to eth0:1:0
[22:50]<sara>LOL
[22:50]<zj20>skac: one thing I can suggest is to unlearn ifconfig(8)/route(8) and learn ip(8).
[22:51]<sara>i do know ip =p
[22:51]<sara>i donno route =\
[22:51]<sara>ifconfig is just acting weird. :P
[22:52]<zj20>What are these vpnX interfaces?
[22:52]<sara>VPN tunnels?
[22:52]<sara>:)
[22:52]<sara>vpn2 ( i think ) is where i reroute my stuff down
[22:53]<zj20>I mean, what driver? It's not TUN/TAP.
[22:53]<sara>its tun
[22:53]<sara>mmm
