Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: settings in rc.firewall
Special Forums IP Networking settings in rc.firewall Post 302217613 by reality on Wednesday 23rd of July 2008 06:56:27 AM
Old 07-23-2008
It doesn't work. And I don't know why. Is there any order for rules to appear? Or some other rules that can possibly block this one?
 

9 More Discussions You Might Find Interesting

1. Solaris

Duplex Settings

Hi All I've been having a lot of errors logged on the Cisco Catalyst (4000 series) which one of my Solaris servers is patched into. I have a feeling they are duplex related, but I'm a bit stuck as to how to confirm that. How do I: 1. Check the duplex settings on my eri0 card? 2. Set the... (3 Replies)
Discussion started by: saabir
3 Replies

2. Cybersecurity

SuSe firewall settings

I am trying to set up a home network, with router for internet access All computers, in both windows and Suse 9.3 can get to the internet. Gateway 192.168.2.1 Computers on static IPs 192.168.2.2-5 When I go into Suse, the samba shares can be seen, and used, so that part is working, but... (0 Replies)
Discussion started by: MadonnaC
0 Replies

3. BSD

settings in rc.firewall

Hi everyone. I'm trying to setup eMule and torrents on the local network behind the BSD server. And everything seems to work except one detail - it works as long as ${fwcmd} add deny log tcp from any to any in via ${oif} setup is commented out. Meaning that not only required ports are open,... (1 Reply)
Discussion started by: reality
1 Replies

4. AIX

hyperlink settings

Does anyone know the hyperlink settings to look at an AIX5L box? (1 Reply)
Discussion started by: vbagwell
1 Replies

5. Linux

Ip settings

Hi, How to set ip address in linux. Regards, Guguli (1 Reply)
Discussion started by: guguli
1 Replies

6. HP-UX

Vi Editor Settings For Hp-UX

can any one provide me Vi Edior Settings for HP-UX I searched the forum i cound't able to find much information. 1) Need Vi editor setting for Color Code ... to work in C++ (Highlight Syntax .... as Vi Editor in Linux ... which we enable the syntax) 2)Delete , backspace , arrows , home ,... (3 Replies)
Discussion started by: girija
3 Replies

7. HP-UX

HP-UX history settings

Hi all My first post here. I've been told certain things regarding HP-UX's .sh_history file which I'm not so sure I agree with completely. These things are that the history file gets flushed on every clean shell exit (plausible, but I doubt it seeing as there are more than 11 thousand lines... (9 Replies)
Discussion started by: kinetik
9 Replies

8. HP-UX

IPC settings on HP-UX

Hi Experts, Need your help for checking te interprocess communications settings on HP-UX box. Using ipcs command I am able to view Message queue,semapohores etc, but from that output I m not able to understand how to determine if there is any issue with ipc settings and how to resolve that? (1 Reply)
Discussion started by: sai_2507
1 Replies

9. UNIX for Advanced & Expert Users

Help with firewall settings

Hi all, I am confusing myself with trying to set up a firewall and hope someone here can help me progress. I have a small cluster of three Raspberry PI's running NOOBS, which I believe is a Debian fork. I have a "Gateway" machine, if that is the right phrase, that has a USB Wifi dongle... (0 Replies)
Discussion started by: steadyonabix
0 Replies

LEARN ABOUT SUSE

tcprules

tcprules(1)                                                   General Commands Manual                                                  tcprules(1)

NAME

       tcprules - compile rules for tcpserver

SYNOPSIS

       tcprules rules.cdb rules.tmp

OVERVIEW

       tcpserver optionally follows rules to decide whether a TCP connection is acceptable.  For example, a rule of

          18.23.0.32:deny

       prohibits connections from IP address 18.23.0.32.

       tcprules reads rules from its standard input and writes them into rules.cdb in a binary format suited for quick access by tcpserver.

       tcprules  can be used while tcpserver is running: it ensures that rules.cdb is updated atomically.  It does this by first writing the rules
       to rules.tmp and then moving rules.tmp on top of rules.cdb.  If rules.tmp already exists, it  is  destroyed.   The  directories  containing
       rules.cdb and rules.tmp must be writable to tcprules; they must also be on the same filesystem.

       If there is a problem with the input, tcprules complains and leaves rules.cdb alone.

       The binary rules.cdb format is portable across machines.

RULE FORMAT

       A rule takes up one line.  A file containing rules may also contain comments: lines beginning with # are ignored.

       Each  rule  contains an address, a colon, and a list of instructions, with no extra spaces.  When tcpserver receives a connection from that
       address, it follows the instructions.

ADDRESSES

       tcpserver starts by looking for a rule with address TCPREMOTEINFO@TCPREMOTEIP.  If it doesn't find one, or if TCPREMOTEINFO is not set,  it
       tries  the  address TCPREMOTEIP.  If that doesn't work, it tries shorter and shorter prefixes of TCPREMOTEIP ending with a dot.  If none of
       them work, it tries the empty string.

       For example, here are some rules:

          joe@127.0.0.1:first
          18.23.0.32:second
          127.:third
          :fourth
          ::1:fifth

       If TCPREMOTEIP is 10.119.75.38, tcpserver will follow the fourth instructions.

       If TCPREMOTEIP is ::1, tcpserver will follow the fifth instructions.  Note that  you  cannot  detect  IPv4  mapped  addresses  by  matching
       "::ffff", as those addresses will be converted to IPv4 before looking at the rules.

       If TCPREMOTEIP is 18.23.0.32, tcpserver will follow the second instructions.

       If TCPREMOTEINFO is bill and TCPREMOTEIP is 127.0.0.1, tcpserver will follow the third instructions.

       If TCPREMOTEINFO is joe and TCPREMOTEIP is 127.0.0.1, tcpserver will follow the first instructions.

ADDRESS RANGES

       tcprules treats 1.2.3.37-53:ins as an abbreviation for the rules 1.2.3.37:ins, 1.2.3.38:ins, and so on up through 1.2.3.53:ins.  Similarly,
       10.2-3.:ins is an abbreviation for 10.2.:ins and 10.3.:ins.

INSTRUCTIONS

       The instructions in a rule must begin with either allow or deny.  deny tells tcpserver to drop the  connection  without  running  anything.
       For example, the rule

          :deny

       tells tcpserver to drop all connections that aren't handled by more specific rules.

       The  instructions  may continue with some environment variables, in the format ,VAR="VALUE".  tcpserver adds VAR=VALUE to the current envi-
       ronment.  For example,

          10.0.:allow,RELAYCLIENT="@fix.me"

       adds RELAYCLIENT=@fix.me to the environment.  The quotes here may be replaced by any repeated character:

          10.0.:allow,RELAYCLIENT=/@fix.me/

       Any number of variables may be listed:

          127.0.0.1:allow,RELAYCLIENT="",TCPLOCALHOST="movie.edu"

SEE ALSO

       tcprulescheck(1), tcpserver(1), tcp-environ(5)

                                                                                                                                       tcprules(1)
All times are GMT -4. The time now is 05:28 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy