[suse-security] VMWare through SuSEFirewall2
i apply anti-spoofing rules only for the internet interface, so vmware is never affected by it. what if you reapply the firewall script after vmware has started?
I have SuSEFirewall2 running in my laptop to drop every incoming connection but ssh and http. Last week I installed VMWare with both host-only and bridged network configurations. So now I have two new network devices. This is output from ifconfig:
(...)
The firewall doesn't know about the new interfaces... and so it complains:
Feb 24 17:48:42 petit kernel: SuSE-FW-DROP-ANTI-SPOOFINGIN=vmnet1 OUT= MAC= SRC=172.16.134.1 DST=172.16.134.255 LEN=240 TOS=0x00 PREC=0x00 TTL=64 ID=0
DF
PROTO=UDP SPT=138 DPT=138 LEN=220
Hello Michael, How do you manage to apply anti-spoofing rules to just the external interface with SuSEFW2? On February 24, 2002 06:30 pm, Michael Stern wrote:
i apply anti-spoofing rules only for the internet interface, so vmware is never affected by it. what if you reapply the firewall script after vmware has started?
That's the workaround I am doing at the moment. I stop and restart manually the script after vmware is started. Pep.
participants (2)
-
Michael Stern
-
Pep Serrano