IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Networking Forum / Update
Post #155,908
by jbrabeck
5/19/04 11:36:24 AM
Reply
New Update
Just called the client again. He has a local person learning to administer the network. Dennis, turned off IPTABLES and in now able to ping everywhere. So now it looks like I need to modify IPTABLES.
Post #155,920
by folkert
Picture of folkert
5/19/04 12:42:58 PM
Reply
New USE FWBUILDER!!!!!
[link|http://www.fwbuilder.org|http://www.fwbuilder.org]

It is what I use for my FW administration and port redirection.

Things are vera nice.

I'll bet that your outgoing spoofing protection is denying the packets to get through. Since the ping of .4.1 of X cannot get back to 0.1 it seems logical.

I could send you a stripped version of my .xml file for fwbuilder...

So you understand fwbuilder's operation. It is tough sometimes.

One last thing you are going to want to update the IPTABLES to at least v1.2.8a. Anything before it has some serious rule parsing issues.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey

Give a man a match, he'll be warm for a minute.
Set him on fire, he'll be warm for the rest of his life!
Post #155,928
by jbrabeck
5/19/04 1:15:40 PM
5/19/04 1:16:43 PM
Reply
New Have you heard of "Smooth Wall"?
Dennis has found a product called smooth wall that is supposed to be a Linux firewall builder similiar to FWBUILDER. I'd advice/recommendations for you (and the rest of the "gang" here) prior to that of a Novell administrator.

I'll be updating the OS from RH7.2 to RH9.x, then loading FWBuilder.

If you're willing to send me that stripped down .xml file, I'd appreciate it. jbrabeck at email dot usps dot gov.

Thanks,

Joe

edit fix my email addy!
Expand Edited by jbrabeck May 19, 2004, 01:16:43 PM EDT
Expand All History
Post #155,937
by Steve Lowe
5/19/04 1:57:41 PM
Reply
New Look at IPcop
www.ipcop.org

Is GPL and has a couple of key features (multiple IP addresses and aliasing on the wan side) that smoothwall only includes on their paid-for product.

I've run both, and stuck with IPcop.
-----
Steve
     What am I overlooking? - (jbrabeck) - (8) - May 19, 2004, 09:53:21 AM EDT
         Okay. - (folkert) - (2) - May 19, 2004, 10:41:41 AM EDT
             Reverse the answers - (jbrabeck) - (1) - May 19, 2004, 10:49:49 AM EDT
                 Then it has to be packet rejection on the Linux machine - (folkert) - May 19, 2004, 12:46:06 PM EDT
         My guess - (jake123) - May 19, 2004, 11:24:51 AM EDT
         Update - (jbrabeck) - (3) - May 19, 2004, 11:36:24 AM EDT
             USE FWBUILDER!!!!! - (folkert) - (2) - May 19, 2004, 12:42:58 PM EDT
                 Have you heard of "Smooth Wall"? - (jbrabeck) - (1) - May 19, 2004, 01:16:43 PM EDT
                     Look at IPcop - (Steve Lowe) - May 19, 2004, 01:57:41 PM EDT

Just a SMOP.
40 ms