06-23-2008
Something like this?
R2(config)#access-list 192 permit tcp any eq www any syn
R2(config)#access-list 192 permit tcp any eq www any ack
R2(config)#access-list 192 permit tcp any eq www any rst
R2(config)#access-list 192 permit tcp any eq www
SITE established
SITE is the IP address of the site you would like to visit.This is a
tutorial of ACL
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I've configured my TCP/IP to have the right protocols to access the internet such as TPC/IP, subnet mask, gateway and dns server but still Im not able to ping anything to the internet. Anybody who has some few good words for me? I need help. Thanks. (2 Replies)
Discussion started by: nseal101
2 Replies
2. UNIX for Dummies Questions & Answers
Hi everybody, I'd like create a connection (by modem) for my unix workstation. I just have the RS232 port and my modem, no lan connection, and I want to surf the net. How can I setup it?
Thanks in advance,
Mauro (1 Reply)
Discussion started by: Mauro
1 Replies
3. Filesystems, Disks and Memory
In Windows XP, there are 3 default access control groups namely: Administrators, Users and Power Users. Is there default access control groups in Unix system? If there is, what are they?
newbie. (1 Reply)
Discussion started by: zertoir
1 Replies
4. Windows & DOS: Issues & Discussions
Hi,
Is there a way to authorise Internet Access through the authentication of user login information without using any firewall?
example :
PC A is internet access ready with all the necessary settings in place (DNS and Gateway, no proxy settings as our company uses transparency proxy).
... (0 Replies)
Discussion started by: jennifer
0 Replies
5. SCO
My SCO box has lost connection to the internet. It sites behind a fire wall and is connected to a local network. What should I check for. (2 Replies)
Discussion started by: fruiz
2 Replies
6. Solaris
Hi Friends,:b:
This is venkatesh, i have Intel Dual core PC and installed Solaris 10. I have a problem that i cannot access internet in my PC i don't know either the drivers installed or not. I manually assign ip 192.168.1.7 and if i ping to this it is alive and if i ping for 192.168.1.1 for the... (4 Replies)
Discussion started by: 1409.venkatesh
4 Replies
7. Solaris
hi experts
i have a sun Enterprise 220 R server with solaris 10 and patches , i configured network card with ip addresses that have access to Internet but i can't be connected :confused:
for same informations :
root@E220R # ifconfig -a
lo0:... (5 Replies)
Discussion started by: lid-j-one
5 Replies
8. UNIX for Dummies Questions & Answers
Hi everybody.
I've setup SunSolaris 10 on VirtualBox, but when I start Sun, I can connect to the Internet, when I open terminal and type command for list device ethernet:
#ifconfig -a
just only see loopback lo0
Can help me solve this problem?
Thank you very much,
ken (0 Replies)
Discussion started by: kenjingo
0 Replies
9. IP Networking
Hi
Good Day, i would like to ask for further info about my problems experiencing this evening. Im a PPP0 connection in the internet using 3G located in asia pacific region.i had this problem this evening in my INTERNET connections that there are some sites i can't open example ( Gizmodo.com,... (2 Replies)
Discussion started by: jao_madn
2 Replies
10. Proxy Server
Dear all experts here,
:)
I would like to install a proxy server on Linux server to perform solely to control the access of Web server.
In this case, some of my vendor asked me to try Squid and I have installed it onto my Linux server.
I would like know how can I set the configuration to... (1 Reply)
Discussion started by: kwliew999
1 Replies
LEARN ABOUT DEBIAN
lire::firewall::ipfilterdlfconverter
IpfilterDlfConverter(3pm) LogReport's Lire Documentation IpfilterDlfConverter(3pm)
NAME
Lire::Firewall::IpfilterDlfConverter - convert ipf (ipmon) logs to firewall DLF
DESCRIPTION
Lire::Firewall::IpfilterDlfConverter converts Ipfilter logs into firewall DLF format. Input for this converter is the standard ipf syslog
log file as produced by ipmon. IP Filter is shipped with FreeBSD, OpenBSD (up to 2.9) and some other OS's.
EXAMPLE
A ipfilter logfile which looks like
Oct 30 07:42:29 rolle ipmon[16747]: 07:42:28.585962 ie0 @0:9
b 192.168.48.1,45085 -> 192.168.48.2,22 PR tcp len 20 64 -S OUT
Oct 30 07:40:24 rolle ipmon[16747]: 07:40:23.631307 ep1 @0:6
b 192.168.26.5,113 -> 192.168.26.1,3717 PR tcp len 20 40 -AR OUT
Oct 30 07:42:29 rolle ipmon[16747]: 07:42:28.585962 ie0 @0:9
b 192.168.48.1,45085 -> 192.168.48.2,22 PR tcp len 20 64 -S OUT
Oct 30 07:44:11 rolle ipmon[16747]: 07:44:10.605416 2x ep1 @0:15
b 192.168.26.1,138 -> 192.168.26.255,138 PR udp len 20 257 IN
Oct 30 07:44:34 rolle ipmon[16747]: 07:44:33.891869 ie0 @0:10
b 192.168.48.1,23406 -> 192.168.48.2,22 PR tcp len 20 64 -S OUT
Oct 30 07:49:13 rolle ipmon[16747]: 07:49:12.554420 ep1 @0:15
b 210.132.100.117 -> 192.168.26.5 PR icmp len 20 56 icmp 3/3 for
192.168.26.5,61915 - 210.132.100.117,53 PR udp len 20 23040 IN
Oct 30 07:50:23 rolle ipmon[16747]: 07:50:22.908107 ep1 @0:15
b 210.132.100.117 -> 192.168.26.5 PR icmp len 20 56 icmp 3/3 for
192.168.26.5,4480 - 210.132.100.117,53 PR udp len 20 19712 IN
Oct 30 07:56:11 rolle ipmon[16747]: 07:56:11.113029 2x ep1 @0:15
b 192.168.26.1,138 -> 192.168.26.255,138 PR udp len 20 257 IN
(that's: .... 'PR' protocol 'len' length_of_ip_headers_saved packetlength direction) will get converted to something like
994398737 denied igmp 100.187.115.1 - ep1 LIRE_NOTAVAIL
224.0.0.2 - 56
994398861 denied igmp 100.187.115.1 - ep1 LIRE_NOTAVAIL
224.0.0.1 - 56
994398862 denied igmp 100.187.115.1 - ep1 LIRE_NOTAVAIL
224.0.0.2 - 56
994406849 denied udp 192.168.26.4 137 ie0 LIRE_NOTAVAIL
192.168.26.255 137 116
994406850 denied udp 192.168.26.4 137 ie0 LIRE_NOTAVAIL
192.168.26.255 137 116
994406866 denied udp 192.168.26.4 137 ie0 LIRE_NOTAVAIL
192.168.26.255 137 98
SEE ALSO
ipl(4) for description of log structure.
The ipmon.c source (e.g. on
http://www.openbsd.org/cgi-bin/cvsweb/~checkout~/
src/usr.sbin/ipmon/Attic/ipmon.c?rev=1.27&
content-type=text/plain&hideattic=0
) for the specification of the log syntax.
The IP Filter webpage on http://coombs.anu.edu.au/~avalon/ip-filter.html
AUTHOR
Joost van Baal <joostvb@logreport.org>, Wessel Dankers <wsl@logreport.org>
VERSION
$Id: IpfilterDlfConverter.pm,v 1.7 2009/03/15 08:10:55 vanbaal Exp $
COPYRIGHT
Copyright (C) 2001-2003 Stichting LogReport Foundation LogReport@LogReport.org
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program (see COPYING); if not, check with
http://www.gnu.org/copyleft/gpl.html.
Lire 2.1.1 2009-03-15 IpfilterDlfConverter(3pm)