Mailinglist Archive: opensuse-security (520 mails)
| < Previous | Next > |
Re: [suse-security] URGENT: SuSE 8.0 freezes when using iptables..
- From: Christian Bjørnbak <cb@xxxxxxxxxxxxxxxx>
- Date: Wed, 17 Jul 2002 09:36:15 +0200
- Message-id: <200207170936.15513.cb@xxxxxxxxxxxxxxxx>
I have now tried a minimum firewall setup from the Iptables tutorial from
www.iptables.org
(http://www.iptables.org/documentation/tutorials/blueflux/).
It works!!!
I have tried to disable ip_conntrack_ftp from /sbin/SuSEfirewall2 by
commenting it out the modprobe. But the server still crashes..
I have also tried to copy all of the modprobe's from the tutorial into
/sbin/SuSEfirewall2 - No change!
The reason why I would like to get SuSEfirewall to work is to setup a
firewall without having to learn all about iptables - I'm a programmer not a
sysadm and just need a setup to protect our office computers.
Does anyone now a good step by step guide: Howto setup iptables firewall with
VPN gateway???
/Christian Bjørnbak
On Sunday 14 July 2002 14:35, you wrote:
> Hi There,
>
> At 13:27 14/07/2002 +0200, you wrote:
> >After the upgrade when using some protocols like ftp the server freezes
> >and the caps lock and scroll lock LED's on the keyboard blinks.
>
> IIRC this indicates a Kernel Panic and the machine is now unusable. You
> could try stopping the FTP Conntrack agent (should be
> /lib/modules/2.4.18-4GB/kernel/net/ipv4/netfilter/ip_conntrack_ftp.o) from
> being loaded with the firewall on a temporary basis but it would mean no
> FTP sessions would survive - though Passive FTP should be handled by the
> default Related/Established rules. Was the upgrade a fresh install or an
> over-install to update the 7.2 installation to 8.0? If the latter there's
> a chance that some older libraries are on the system due to 8.0 having a
> different directory structure and they are causing the problem.
>
> Sorry I can't help more - good luck :)
>
> Matt Palmer.
www.iptables.org
(http://www.iptables.org/documentation/tutorials/blueflux/).
It works!!!
I have tried to disable ip_conntrack_ftp from /sbin/SuSEfirewall2 by
commenting it out the modprobe. But the server still crashes..
I have also tried to copy all of the modprobe's from the tutorial into
/sbin/SuSEfirewall2 - No change!
The reason why I would like to get SuSEfirewall to work is to setup a
firewall without having to learn all about iptables - I'm a programmer not a
sysadm and just need a setup to protect our office computers.
Does anyone now a good step by step guide: Howto setup iptables firewall with
VPN gateway???
/Christian Bjørnbak
On Sunday 14 July 2002 14:35, you wrote:
> Hi There,
>
> At 13:27 14/07/2002 +0200, you wrote:
> >After the upgrade when using some protocols like ftp the server freezes
> >and the caps lock and scroll lock LED's on the keyboard blinks.
>
> IIRC this indicates a Kernel Panic and the machine is now unusable. You
> could try stopping the FTP Conntrack agent (should be
> /lib/modules/2.4.18-4GB/kernel/net/ipv4/netfilter/ip_conntrack_ftp.o) from
> being loaded with the firewall on a temporary basis but it would mean no
> FTP sessions would survive - though Passive FTP should be handled by the
> default Related/Established rules. Was the upgrade a fresh install or an
> over-install to update the 7.2 installation to 8.0? If the latter there's
> a chance that some older libraries are on the system due to 8.0 having a
> different directory structure and they are causing the problem.
>
> Sorry I can't help more - good luck :)
>
> Matt Palmer.
| < Previous | Next > |