Allow port range using IPsec? Post: 302666539

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

print range between two patterns if it contains a pattern within the range

I want to print between the range two patterns if a particular pattern is present in between the two patterns. I am new to Unix. Any help would be greatly appreciated. e.g. Pattern1 Bombay Calcutta Delhi Pattern2 Pattern1 Patna Madras Gwalior Delhi Pattern2 Pattern1...

2. AIX

TCP/UDP port range for default AIX NFS?

May I know what is the TCP/UCP port range for any default AIX NFS? Based on rpcinfo -p, I got the following output: program vers proto port service 100000 4 udp 111 portmapper 100000 3 udp 111 portmapper 100000 2 udp 111 portmapper 100000 4 ...

3. BSD

Problem on IPSec

Hi, this is my first post...:p Hello Admin :) Can I have an ask for something with my configuration ? I have finished some kind of the tutorial to build ipsec site to site, and the "step" has finished completely. I have a simulation with a local design topology with two PC's (FreeBSD ...

4. UNIX for Advanced & Expert Users

Ipsec implementation

How can i implement Ipsec between two machines in linux_ ubuntu? any link?? suggestion??

5. Cybersecurity

IPSEC

hello, after configuration ipsec in ip4 I can not ping between client and server whereas I had success ping before configuration! I also generate different key for AH and ESP as i have shown below. what is my problem and what should i do to have ping and test the configuration? code: ...

6. UNIX for Dummies Questions & Answers

iptables to block port 25 only to a certain range

I want to limit all *outbound* traffic on eth0 (or all *.*) on port 25 to a specific (allowed) range... I.E. 192.168.1.5 (local ip) tries to connect to 1.2.3.4:25 (outside real world ip) It can proceed because 1.2.3.0/24 is the allowed range Now, 192.168.1.5 (local ip) tries to connect to...

7. Red Hat

Which is the effective ephemeral port range in Linux 2.6 for this set up?

In my Linux system ephemeral port range is showing different ranges as follows $ cat /proc/sys/net/ipv4/ip_local_port_range 32768 61000  cat /etc/sysctl.conf | grep net.ipv4.ip_local_port_range net.ipv4.ip_local_port_range = 9000 65500 Which will be the effective ephemeral port...

8. Solaris

How to find port number wwn of particular port on dual port HBA,?

please find the below o/p for your reference bash-3.00# fcinfo hba-port HBA Port WWN: 21000024ff295a34 OS Device Name: /dev/cfg/c2 Manufacturer: QLogic Corp. Model: 375-3356-02 Firmware Version: 05.03.02 FCode/BIOS Version: BIOS: 2.02; fcode: 2.01;...

9. AIX

Forcing named 9 to use a fixed ephemeral port range

I'll start with I'm not an AIX expert, I inherited a lot of AIX servers to maintain. My problem is on AIX 7.1 TL4 SP4 environments. I'm running named as a DNS forwarder only to internal DNS servers. These AIX servers have a customized UDP ephemeral port range to avoid conflicting with the...

10. UNIX for Beginners Questions & Answers

Bash script, find the next closed (not in use) port from some port range.

hi, i would like to create a bash script that check which port in my Linux server are closed (not in use) from a specific range, port range (3000-3010). the print output need to be only 1 port, and it will be nice if the output will be saved as a variable or in same file. my code is: ...

LEARN ABOUT REDHAT

net::config

Net::Config(3pm)					 Perl Programmers Reference Guide					  Net::Config(3pm)

NAME

       Net::Config - Local configuration data for libnet

SYNOPSYS

	   use Net::Config qw(%NetConfig);

DESCRIPTION

       "Net::Config" holds configuration data for the modules in the libnet distribuion. During installation you will be asked for these values.

       The configuration data is held globally in a file in the perl installation tree, but a user may override any of these values by providing
       their own. This can be done by having a ".libnetrc" file in their home directory. This file should return a reference to a HASH containing
       the keys described below.  For example

	   # .libnetrc
	   {
	       nntp_hosts => [ "my_prefered_host" ],
	       ph_hosts   => [ "my_ph_server" ],
	   }
	   __END__

METHODS

       "Net::Config" defines the following methods. They are methods as they are invoked as class methods. This is because "Net::Config" inherits
       from "Net::LocalCfg" so you can override these methods if you want.

       requires_firewall HOST
	   Attempts to determine if a given host is outside your firewall. Possible return values are.

	     -1  Cannot lookup hostname
	      0  Host is inside firewall (or there is no ftp_firewall entry)
	      1  Host is outside the firewall

	   This is done by using hostname lookup and the "local_netmask" entry in the configuration data.

NetConfig VALUES
       nntp_hosts
       snpp_hosts
       pop3_hosts
       smtp_hosts
       ph_hosts
       daytime_hosts
       time_hosts
	   Each is a reference to an array of hostnames (in order of preference), which should be used for the given protocol

       inet_domain
	   Your internet domain name

       ftp_firewall
	   If you have an FTP proxy firewall (NOT an HTTP or SOCKS firewall) then this value should be set to the firewall hostname. If your fire-
	   wall does not listen to port 21, then this value should be set to "hostname:port" (eg "hostname:99")

       ftp_firewall_type
	   There are many different ftp firewall products available. But unfortunately there is no standard for how to traverse a firewall.  The
	   list below shows the sequence of commands that Net::FTP will use

	     user	 Username for remote host
	     pass	 Password for remote host
	     fwuser	 Username for firewall
	     fwpass	 Password for firewall
	     remote.host The hostname of the remote ftp server

	   0   There is no firewall

	   1
		    USER user@remote.host
		    PASS pass

	   2
		    USER fwuser
		    PASS fwpass
		    USER user@remote.host
		    PASS pass

	   3
		    USER fwuser
		    PASS fwpass
		    SITE remote.site
		    USER user
		    PASS pass

	   4
		    USER fwuser
		    PASS fwpass
		    OPEN remote.site
		    USER user
		    PASS pass

	   5
		    USER user@fwuser@remote.site
		    PASS pass@fwpass

	   6
		    USER fwuser@remote.site
		    PASS fwpass
		    USER user
		    PASS pass

	   7
		    USER user@remote.host
		    PASS pass
		    AUTH fwuser
		    RESP fwpass

       ftp_ext_passive
       ftp_int_pasive
	   FTP servers normally work on a non-passive mode. That is when you want to transfer data you have to tell the server the address and
	   port to connect to.

	   With some firewalls this does not work as the server cannot connect to your machine (because you are behind a firewall) and the fire-
	   wall does not re-write the command. In this case you should set "ftp_ext_passive" to a true value.

	   Some servers are configured to only work in passive mode. If you have one of these you can force "Net::FTP" to always transfer in pas-
	   sive mode; when not going via a firewall, by setting "ftp_int_passive" to a true value.

       local_netmask
	   A reference to a list of netmask strings in the form "134.99.4.0/24".  These are used by the "requires_firewall" function to determine
	   if a given host is inside or outside your firewall.

       The following entries are used during installation & testing on the libnet package

       test_hosts
	   If true then "make test" may attempt to connect to hosts given in the configuration.

       test_exists
	   If true then "Configure" will check each hostname given that it exists

       $Id: //depot/libnet/Net/Config.pm#17 $

perl v5.8.0							    2002-06-01							  Net::Config(3pm)