12-04-2015
Hi Moderator,
Please delete the below post which i posted by mistake.Thanks in advance.
Need to Convert the QNX rules to UNIX iptables
Kindly help me on this.
Thanks magesh
---------- Post updated at 07:31 AM ---------- Previous update was at 02:59 AM ----------
Quote:
Originally Posted by
Don Cragun
This is not my area of expertise.
I was trying to gather information that might help someone else with expertise in this area help you. When you said you wanted to convert from QNX to UNIX it wasn't clear whether you meant AIX (IBM's UNIX System), HP/UX (Hewlett-Packard's UNIX System), IRIX (Silicon Graphic's UNIX System), OS X (Apple's UNIX System), Solaris (Sun/Fujitsu/Oracle's UNIX System), and UnixWare (SCO Group's UNIX System) and since administrative tools can vary considerably between those systems I asked for clarification that might help others answer your question. (And, of course, now we know that you're using a Linux system; not a UNIX system.)
However, a site like this (where volunteers offer their free time to help others) really shouldn't be expected to perform urgent system administration duties for you as you move from one operating system to another.
Hi Moderator,
Please delete the below post which i posted by mistake.Thanks in advance.
https://www.unix.com/shell-programming-and-scripting/262653-need-convert-qnx-rules-unix-iptables.html
Kindly help me on this.
Thanks magesh
Last edited by mageshkumar; 12-04-2015 at 08:43 AM..
Reason: need to delete my post
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi Guys,
This site is great for Unix Gurus and Newbies (like me) alike!
Anyway, anybody had experience with an OLD QNX? ver. 4.238? I know it's old, that is why we are migrating the data but vendors can't connect to it. Probably because of the incorrect gateway defined in it.
Anyway to... (4 Replies)
Discussion started by: Ma1k3ru
4 Replies
2. UNIX for Advanced & Expert Users
Hi, I'm develop shared library for Linux, AIX and QNX. there is no problem for Linux and AIX,
but in QNX, if I execute a simple application which -lwiththislibrary,
it's always segmentation violation (core dumped) occurs.
for note:
this shared library must to linked with an static... (1 Reply)
Discussion started by: ReeV
1 Replies
3. IP Networking
Hi
I have small home network and I want to block some forums on web
When I use this
iptables -A INPUT -s forum -j DROP
rules is applied but when I restart some of PC rules are not present any more also I tried to save firewall settings
iptables-save > /root/dsl.fw
but how to... (2 Replies)
Discussion started by: solaris_user
2 Replies
4. Cybersecurity
Hello,
I was playing around with iptables to setup an isolated system. On a SLES10 system, I ran the below to setup my first draft of rules. I noticed that the rules come into effect immediately and do not require any restart of iptables.
iptables -A INPUT -j ACCEPT
iptables -A OUTPUT -m... (4 Replies)
Discussion started by: garric
4 Replies
5. Ubuntu
Could someone help me with writing rules for iptables?
I need a dos attacks protection for a game server.
port type udp
ports 27015:27030
interface: eth0
Accept all packets from all IPs
Chek if IP sent more than 50 packets per second
Drop all packets from this IP for 5 minutes
I would be... (0 Replies)
Discussion started by: Greenice
0 Replies
6. Red Hat
Hi Gurus,
I need to add Multicast Port = xyz
Multicast Address = 123.134.143 ( example) to my firewall rules. Can you please guide me with the lines I need to update my iptables files with. (0 Replies)
Discussion started by: rama krishna
0 Replies
7. Red Hat
Hi Champs
i am new in Iptables and trying to write rules for my Samba server.I took some help from internet, created one script and run from rc.local :
#Allow loopback
iptables -I INPUT -i lo -j ACCEPT
# Accept packets from Trusted network
iptables -A INPUT -s my-network/subnet -j... (0 Replies)
Discussion started by: Vaibhav.T
0 Replies
8. UNIX for Advanced & Expert Users
Hi,
I've been struggling with this all morning and seem to have a blind spot on what the problem is. I'm trying to use iptables to block traffic on a little cluster of raspberry pi's but to allow ssh and ping traffic within it.
The cluster has a firewall server with a wifi card connecting to... (4 Replies)
Discussion started by: steadyonabix
4 Replies
9. Cybersecurity
Hello,
I did 2 scripts. The second one is, I hope, more secure.
What do you think?
Basic connection (no server, no router, no DHCP and the Ipv6 is disabled)
#######script one
####################
iptables -F
iptables -X -t filter
iptables -P INPUT DROP
iptables -P FORWARD... (6 Replies)
Discussion started by: Thomas342
6 Replies
10. IP Networking
Hi, I am relatively new to firewalls and netfilter. I have a Debian Stretch router box running dnsmasq, connected to a VPN. Occasionally dnsmasq polls all of the desired DNS servers to select the fastest. When it does this it responds to replies of the non-selected DNS servers with a icmp type... (0 Replies)
Discussion started by: CrazyDave
0 Replies
LEARN ABOUT SUSE
iptables-xml
IPTABLES-XML(8) IPTABLES-XML(8)
NAME
iptables-xml -- Convert iptables-save format to XML
SYNOPSIS
iptables-xml [-c] [-v]
DESCRIPTION
iptables-xml is used to convert the output of iptables-save into an easily manipulatable XML format to STDOUT. Use I/O-redirection pro-
vided by your shell to write to a file.
-c, --combine
combine consecutive rules with the same matches but different targets. iptables does not currently support more than one target per
match, so this simulates that by collecting the targets from consecutive iptables rules into one action tag, but only when the rule
matches are identical. Terminating actions like RETURN, DROP, ACCEPT and QUEUE are not combined with subsequent targets.
-v, --verbose
Output xml comments containing the iptables line from which the XML is derived
iptables-xml does a mechanistic conversion to a very expressive xml format; the only semantic considerations are for -g and -j targets in
order to discriminate between <call> <goto> and <nane-of-target> as it helps xml processing scripts if they can tell the difference between
a target like SNAT and another chain.
Some sample output is:
<iptables-rules>
<table name="mangle">
<chain name="PREROUTING" policy="ACCEPT" packet-count="63436" byte-count="7137573">
<rule>
<conditions>
<match>
<p>tcp</p>
</match>
<tcp>
<sport>8443</sport>
</tcp>
</conditions>
<actions>
<call>
<check_ip/>
</call>
<ACCEPT/>
</actions>
</rule>
</chain>
</table> </iptables-rules>
Conversion from XML to iptables-save format may be done using the iptables.xslt script and xsltproc, or a custom program using libxsltproc
or similar; in this fashion:
xsltproc iptables.xslt my-iptables.xml | iptables-restore
BUGS
None known as of iptables-1.3.7 release
AUTHOR
Sam Liddicott <azez@ufomechanic.net>
SEE ALSO
iptables-save(8), iptables-restore(8), iptables(8)
Jul 16, 2007 IPTABLES-XML(8)