[22:53]<sara>one of them is ether [22:54]<sara>but thats down by default [22:54]<sara>and i have a few gre tunnels too [22:55]<sara>rob0: i fixed my problem now. but my network is a mess :P [22:55]<sara>this time when i bound the gre1 and rerouted the ip down to the other box [22:56]<sara>and i put the ip on that box and just put a none rerouteable ip on the same subnet as the peer at the other side (a cisco) [22:56]<sara>all dandy now. [22:57]<zj20>Cisco VPN reroutes your default gateway through the VPN, IIRC. I only messed with it briefly a long time ago. [22:57]<sara>bind a ip to ser0 [22:58]<sara>192.168.x.x or w/e [22:58]<sara>route a ip to that interface [22:58]<sara>blehbleh [22:58]<sara>i hate cisco [22:58]<zj20>me too :) [22:58]<sara>set the tunnel mode to gre [22:58]<sara>then set the tunnel source to serial 1 [22:58]<sara>then set the tunnel dest [22:59]<sara>then link to the ser0 console [22:59]<sara>then [22:59]<sara>add a none rerouteable ip on there [22:59]<sara>then add your routeable ip to your interface down the tunnel [23:00]<sara>and hope ARP doesn't have a mental break down [23:03]<sara>just ignore me i am a n00b ;-(. [23:04]<sxzmnwzfcnz>Me too, but at least my shit works. ;-) [23:11]<zzrgmgg>Yay my firewall script is acctully working [23:11]<zzrgmgg>thanks for all the help [23:12]<zzrgmgg>special thanks to rob0 and robw810 [23:26]<rsmw>when i'm doing -j DENIED i get: iptables v1.3.1: Couldn't load target `DENIED':/lib/iptables/libipt_DENIED.so: cannot open shared object file: No such file or directory [23:26]<rsmw>wtf [23:26]<rsmw>is DENIED deprecated or what? [23:28]<zzrgmgg>-j DROP maybe? [23:29]<rsmw>i'm trying to block port 80 on one of my computers doing, iptables -A INPUT -p tcp -s 192.168.0.145 --dport 80 -j DROP [23:29]<rsmw>but it dosn't work [23:29]<rsmw>can someone help pls? [23:30]<rsmw>i would read the manpage if i have time :S but i don't [23:30]<rsmw>have time* [23:46]<rsmw>here someone is telling me to block port 80, i just did, but the guy wants to access some http sites that are in the port 80, wtf [23:46]<rsmw>how can i do that? [23:46]<rsmw>he wants me to block everything, instead of some sites that are on the port 80 [23:46]<rsmw>i have a linux/iptables nat/firewall/router [23:49]<rsmw>can i block ip instead of ports?
