[SLE] newbie with a pesonal firewall problem
Hi everyone, I recently installed my first linux distro, and obviously it was suse 8.0. During the install I checked off about every package possible to see what suse had to offer, including all the ones under the firewall section. About two weeks later i was receiving messages in the console log when I logged in, see below.Thinking it was caused by a problem with the ipchains and the personal firewall i reinstalled everything but the ipchains about two weeks ago but the message came back today. In the past about one week later I wouldn't be able to login because this message would just scroll and scroll. Here's what it says... Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information. Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information. I tried $ iptables -h ... $ iptables --help with no luck. It's not even a command. efrmau@linux:~> iptables -h bash: iptables: command not found i checked the man page but found nothing about a host/network entry there's probably a hosts table or something for the firewall. my isp, earthlink, doesn't assign ip's, there dynamically assigned. Any help would be appreciated. As of now I fired up firewall2, but I'm not sure I'm protected because I use a serial modem, connected to /dev/modem which I think is linked to tts0 or soething like that. I use kppp to connect, does that open ppp0 ? which is what I set up firewall2 to protect. Eric Oh, by the way I've been reading these lists for about a week now, and I'd like to say that I found YAST2 very easy to use and understand, but then again I can't compare it to the original one. Plus I've had generally no problems with suse, bbesides a snafu with a winmodem, but that has been replaced and yast2 set up the other one without a problem.
iptables is only runnable as root user, if you do want to see what it runs you'll need to type "su -" in a console then enter your root password. you'll be given a ppp0 interface when you are finished logging in to your isp. you can see it by running (as root again) "ifconfig -a" to see all your network connections (lo0 is your local loopback connection). i suspect the personal firewall problem is to do with a misconfiguration somewhere, probably a missing character in /etc/sysconfig/personal-firewall or similar Ewan On Sun, 2002-08-04 at 22:05, W.W. Webb wrote:
Hi everyone, I recently installed my first linux distro, and obviously it was suse 8.0. During the install I checked off about every package possible to see what suse had to offer, including all the ones under the firewall section. About two weeks later i was receiving messages in the console log when I logged in, see below.Thinking it was caused by a problem with the ipchains and the personal firewall i reinstalled everything but the ipchains about two weeks ago but the message came back today. In the past about one week later I wouldn't be able to login because this message would just scroll and scroll.
Here's what it says...
Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information. Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information.
I tried $ iptables -h ... $ iptables --help with no luck. It's not even a command.
efrmau@linux:~> iptables -h bash: iptables: command not found
i checked the man page but found nothing about a host/network entry there's probably a hosts table or something for the firewall. my isp, earthlink, doesn't assign ip's, there dynamically assigned.
Any help would be appreciated. As of now I fired up firewall2, but I'm not sure I'm protected because I use a serial modem, connected to /dev/modem which I think is linked to tts0 or soething like that. I use kppp to connect, does that open ppp0 ? which is what I set up firewall2 to protect.
Eric
Oh, by the way I've been reading these lists for about a week now, and I'd like to say that I found YAST2 very easy to use and understand, but then again I can't compare it to the original one. Plus I've had generally no problems with suse, bbesides a snafu with a winmodem, but that has been replaced and yast2 set up the other one without a problem.
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com
Thanks Ewan, i ran ifconfig, but what is sit0? I'm curious / trying to learn. sit0 Link encap:IPv6-in-IPv4 NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b) Also is the reason why the iptables and ifconfig aren't runnable as a normal user because of the $PATH, or is it permissions? Not that I would change them. When I checked out root's $PATH compared to mine, I'm guessing there in /usr/sbin or /sbin. I'm probably mistaken though. To my suprise i do connect with ppp0.I should have su'd before, but I try not to play as root.My unix teacher would be so upset we just learned ifconfig a few weeks ago. The only thing of importance in my /etc/sysconfig/personal-firewall is reject_all_incoming_connections="no", which seems wrong shouldn't it be yes? I don't need any holes open, and couldn't I add to hosts.allow if I did? But then again I'll probably just use firewall2, since it is ppp0. Where is the best place for me to get information about linux, and suse? Is learning by doing better than learning by reading? Eric On Sun, 2002-08-04 at 17:18, Ewan Leith wrote:
iptables is only runnable as root user, if you do want to see what it runs you'll need to type "su -" in a console then enter your root password.
you'll be given a ppp0 interface when you are finished logging in to your isp. you can see it by running (as root again) "ifconfig -a" to see all your network connections (lo0 is your local loopback connection).
i suspect the personal firewall problem is to do with a misconfiguration somewhere, probably a missing character in /etc/sysconfig/personal-firewall or similar
Ewan
On Sun, 2002-08-04 at 22:05, W.W. Webb wrote:
Here's what it says...
Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information. Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information.
sit0 is an odd new interface, it is meant to (i think) allow ipv6 traffic (the new internet standard) to be carried over ipv4. you basically won't ever see it used unless you are at an american university on Internet2. iptables and ipchains live in /usr/sbin, you can run them as a non-root user if you type in /usr/sbin/ipchains, but none of the commands will work other than -h, /usr/sbin> ./iptables -L iptables v1.2.5: can't initialize iptables table `filter': Permission denied (you must be root) Ewan On Sun, 2002-08-04 at 23:03, W.W. Webb wrote:
Thanks Ewan,
i ran ifconfig, but what is sit0? I'm curious / trying to learn.
sit0 Link encap:IPv6-in-IPv4 NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
Also is the reason why the iptables and ifconfig aren't runnable as a normal user because of the $PATH, or is it permissions? Not that I would change them. When I checked out root's $PATH compared to mine, I'm guessing there in /usr/sbin or /sbin. I'm probably mistaken though.
To my suprise i do connect with ppp0.I should have su'd before, but I try not to play as root.My unix teacher would be so upset we just learned ifconfig a few weeks ago.
The only thing of importance in my /etc/sysconfig/personal-firewall is
reject_all_incoming_connections="no",
which seems wrong shouldn't it be yes? I don't need any holes open, and couldn't I add to hosts.allow if I did?
But then again I'll probably just use firewall2, since it is ppp0.
Where is the best place for me to get information about linux, and suse? Is learning by doing better than learning by reading?
Eric
On Sun, 2002-08-04 at 17:18, Ewan Leith wrote:
iptables is only runnable as root user, if you do want to see what it runs you'll need to type "su -" in a console then enter your root password.
you'll be given a ppp0 interface when you are finished logging in to your isp. you can see it by running (as root again) "ifconfig -a" to see all your network connections (lo0 is your local loopback connection).
i suspect the personal firewall problem is to do with a misconfiguration somewhere, probably a missing character in /etc/sysconfig/personal-firewall or similar
Ewan
On Sun, 2002-08-04 at 22:05, W.W. Webb wrote:
Here's what it says...
Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information. Aug 4 16:18:43 linux logger: iptables v1.2.5: host/network `entry' not found Aug 4 16:18:43 linux logger: Try `iptables -h' or 'iptables --help' for more information.
participants (2)
-
Ewan Leith
-
W.W. Webb