[SOLVED] AFWall+ iptables help


 
Thread Tools Search this Thread
Special Forums IP Networking [SOLVED] AFWall+ iptables help
# 15  
Old 02-27-2014
Yes, I'm putting in router's MAC address (BSSID). After I typed in those commands into the terminal app, I typed in iptables -L and it didn't show my changes.

Ok... I already have PuTTY for Windows, and I downloaded an app called SSH Server onto my Android. I was able to successfully connect with PuTTY. But when I type "su" into the PuTTY terminal to get root access, it says "Permission Denied." I also tried logging in PuTTY as "root". But then it asks me for a password... which I don't know the root password. I tried searching, but I can't find any answers. People are saying, "You don't need to use your root password; Superuser does the job." I don't know what to do to make my phone let PuTTY get root permissions.

Last edited by 3happypenguins; 02-27-2014 at 04:11 PM..
# 16  
Old 02-27-2014
Quote:
Originally Posted by 3happypenguins
Yes, I'm putting in router's MAC address (BSSID).
I'm not sure that's the the same MAC as ARP uses, which is what MAC matching checks.

Double check what MACs your android thinks are what IP's by running arp -n from your terminal app.
# 17  
Old 02-27-2014
Quote:
Originally Posted by Corona688
I'm not sure that's the the same MAC as ARP uses, which is what MAC matching checks.

Double check what MACs your android thinks are what IP's by running arp -n from your terminal app.
I just did that and it's showing a different MAC address. It's labelling it as "[ether] on eth0". I checked in my router, and it's showing my LAN MAC address. I've tried my LAN (and WAN) in the past already and it won't block access to the router with them either.
# 18  
Old 02-27-2014
Quote:
Originally Posted by 3happypenguins
I just did that and it's showing a different MAC address. It's labelling it as "[ether] on eth0". I checked in my router, and it's showing my LAN MAC address.
I think the BSSID is only relevant for the wireless communication layer -- strip that away and you get plain old ethernet.

Try blocking that mac, instead of the BSSID.
# 19  
Old 02-27-2014
IT WORKS!!!

*facepalm*. So it's definitely my LAN MAC address that needs to be used. However, when I had tried the LAN address before, it didn't work because I needed to REBOOT MY PHONE!!! It finally occurred to me when I thought, "Hey, whenever I make firewall iptables rules changes in Tomato or DD-WRT, I always have to reboot the router to make the changes take effect."

So, I put in the LAN MAC address, rebooted the phone, and voila! Can't connect to the internet!!! Smilie

Now... I guess I'll have to use the "arp -n" code in a terminal app in my friend's son's phone while connected to the neighbour's router. I was just planning on using the BSSID of the neighbour's router... but clearly that won't work.
# 20  
Old 02-27-2014
Quote:
Originally Posted by 3happypenguins
Now... I guess I'll have to use the "arp -n" code in a terminal app in my friend's son's phone while connected to the neighbour's router. I was just planning on using the BSSID of the neighbour's router... but clearly that won't work.
Actually -- it only appears in arp once you've already connected and started communicating, so that's no good.

You might just have to store the numbers somewhere.

Another thing you could do is allow one particular MAC, and disallow all others...
# 21  
Old 02-27-2014
Quote:
Originally Posted by 3happypenguins
People are saying, "You don't need to use your root password; Superuser does the job." I don't know what to do to make my phone let PuTTY get root permissions.
That might mean you're supposed to use sudo instead of su. Hopefully a moot point now anyway.
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

[Solved] Tru64 vm

Hi, One of our old Digital Alpha Server has died (CPU Failure). I want to recover a file from that server. Backups were done via Networker, however, cross platform recovery is not supported and I don't have any other TRU64 server available. Is there a VM or Emulator available which can get... (1 Reply)
Discussion started by: Mack1982
1 Replies

2. Shell Programming and Scripting

[Solved] For loop help

Hello, This is really breaking my head. I request you help to solve this problem. I have a list of files at the source directory (/tmp) as below, NewTransfer_20131202_APAC.dat NewTransferFile_20131202_APAC.dat NewTransfer_20131203_APAC.dat NewTransferFile_20131203_APAC.dat... (3 Replies)
Discussion started by: sravicha
3 Replies

3. UNIX for Dummies Questions & Answers

[Solved] Not able to do a chroot.

Hi all, I have two doms on my machine. I boot my machine from an rfs in one dom1 and mount the other rfs in the other dom2 at /media. Now I wanted to restrict access of users on dom2 to only their home directories. I do not want them to access any other directories on dom1 or dom2. So I mounted... (2 Replies)
Discussion started by: sai2krishna
2 Replies

4. Shell Programming and Scripting

[Solved] Permutation

Hi, I am trying to permutate each column (Except for IDS). file.txt FID IID TOAST1 TOAST2 TOAST3 ID3 ID3 1 -9 2 ID4 ID4 2 1 1 ID1 ID1 -9 -9 1 ID8 ID8 1 1 -9 ID12 ID12 1 2 2 for toast1 column, there are two 1's, two 2's and one -9. Having the same number of denominations,... (2 Replies)
Discussion started by: johnkim0806
2 Replies

5. Shell Programming and Scripting

[Solved] How to use delimiter

Hi, I am using below script to get the below given output. But i am wondering how to pick the names from below output. Script: echo "dis ql(*) cluster(CT.CL.RIBRSBT3)"| runmqsc CT.QM.701t8|egrep QUEUE|sed -e 's/QUEUE(/ /'|sed -e 's/)/ /' Output: ... (10 Replies)
Discussion started by: darling
10 Replies

6. UNIX for Advanced & Expert Users

[SOLVED] No INPUT chain on nat table in iptables

Hello, I'm having problem with an iptables rule. It seems that on one of two systems on the nat table, the INPUT chain doesn't exist for some strange reason. I get the error below: # iptables -t nat -A INPUT -j ACCEPT iptables: No chain/target/match by that name. Here is my kernel on... (0 Replies)
Discussion started by: Narnie
0 Replies

7. Shell Programming and Scripting

[solved] merging two files and writing to another file- solved

i have two files as file1: 1 2 3 file2: a b c and the output should be: file3: 1~a 2~b 3~c (1 Reply)
Discussion started by: mlpathir
1 Replies

8. AIX

Problem Solved

Generally, most people, I guess, go from 5.3 ML4 Directly to TL 7. So they may never run into this issue. For the rest of us, here is the resolution of my problem in going from ML6 to TL7. Apparently with the change from ML to TL IBM added a "BuildDate Verification" routine into... (1 Reply)
Discussion started by: mrmurdock
1 Replies
Login or Register to Ask a Question