Linux-Noob Forums

Welcome, Guest

You have to register before you can post on our site.

Search Forums

(Advanced Search)

Forum Statistics

» Members: 5,216
» Latest member: distributorsemen
» Forum threads: 4,029
» Forum posts: 16,404

Full Statistics

Online Users

There are currently 346 online users.
» 0 Member(s) | 343 Guest(s)
Applebot, Bing, Google

Latest Threads

How to install Archboot i...
Forum: Network Problems
Last Post: Meup
2025-05-13, 01:41 PM
» Replies: 0
» Views: 449

clear logs in smoothwall
Forum: Security and Firewalls
Last Post: amanda63
2024-03-10, 03:27 PM
» Replies: 8
» Views: 88,161

I cannot install RedHat 8...
Forum: Redhat
Last Post: hybrid
2023-11-11, 01:01 PM
» Replies: 1
» Views: 41,790

How things are done, usin...
Forum: Xorg Problems
Last Post: ross
2023-09-04, 09:03 AM
» Replies: 0
» Views: 1,892

Im back.....
Forum: Hello
Last Post: anyweb
2021-01-17, 11:36 AM
» Replies: 1
» Views: 5,374

add mp3 plugin to xmms in...
Forum: Fedora
Last Post: anyweb
2021-01-17, 11:30 AM
» Replies: 11
» Views: 41,445

Configuring VSFTPd Server
Forum: FTP Server
Last Post: Johnbaca
2020-10-14, 10:25 AM
» Replies: 32
» Views: 117,730

Wolf won't play sound!
Forum: Game Problems
Last Post: Guest
2020-10-03, 05:51 PM
» Replies: 1
» Views: 55,586

Using git + python
Forum: How Do I?
Last Post: Clueless puppy
2020-08-21, 04:37 PM
» Replies: 0
» Views: 45,596

what does your nick mean ...
Forum: Hello
Last Post: volt
2020-08-06, 03:25 PM
» Replies: 28
» Views: 42,036

Running programs on start-up?

Posted by: Shock Wave - 2005-04-22, 08:12 AM - Forum: How Do I? - Replies (2)

	I've written a silly little script that starts an xterm session. I'd like this script to be run as soon as I log in. Where do I add the script to make this possible?

ArchLinux as MaxOSX

Posted by: halo14 - 2005-04-21, 09:02 PM - Forum: Linux - Replies (4)

	ArchLinux Kernel 2.6.11-7 KDE-3.4 Baghira style KSmoothDock

NFS mounts

Posted by: Shock Wave - 2005-04-21, 07:17 AM - Forum: Samba and NFS - Replies (1)

	I'm trying to incorporate a status check on any/all NFS mounts on my system into a script. Is there a simple command that does this? I tried Google-ing up an answer but found nothing helpful. I suck. Anyone have any ideas?

install aol instant messenger

Posted by: vinn - 2005-04-20, 02:06 AM - Forum: How Do I? - Replies (2)

	can anyone give me really good detail on how to install AIM on suse 9.1?

sample iptables firewall

Posted by: Ritter - 2005-04-19, 11:17 PM - Forum: Security and Firewalls - Replies (2)

I'm going to show you a current set of rules I have for a firewall on a machine that is acting as a gateway.

eth0 is the private network with hosts that use this machine as a gateway.

eth1 is the internet access network.

eth0 has an interface of 192.168.10.1, static for the private network.

eth1 has an interface of 192.168.1.169, although when this goes into a production environment this will become a publicly routable address or the address assigned by a dsl/cable modem.

There are a lot of comments that prepend the rules that should clarify what I am doing, but if you get confused or have any questions feel free to ask.

This is still a work in progress so not all of my table/chain policies are exactly the way I'll have them be as I reach a final version.

Code:
# Generated by iptables-save v1.2.9 on Fri Apr 30 02:26:35 2004

*nat

:PREROUTING ACCEPT [0:0]

:POSTROUTING ACCEPT [0:0]

:OUTPUT ACCEPT [0:0]

:BANNED - [0:0]

:LDROP - [0:0]

# example ban, dropped but logged first

#-A PREROUTING -s 1.2.3.4 -j BANNED

# example, not logged just dropped

#-A PREROUTING -s 2.3.4.5 -j DROP

#

-A PREROUTING -p tcp --dport 22 -j ACCEPT

-A PREROUTING -i eth0 -p tcp --dport 53 -j ACCEPT

-A PREROUTING -i eth0 -p udp --dport 53 -j ACCEPT

#-A PREROUTING -i eth1 -p tcp --sport 0:19 -j LDROP

#-A PREROUTING -i eth1 -p tcp --dport 0:19 -j LDROP

# kill DHCP, dont even log it

-A PREROUTING -i eth1 -p udp --sport 67:68 --dport 67:68 -j DROP

# evil windows! this is actually the port ranges for windows file sharing (samba included)

# drop and dont bother logging

-A PREROUTING -i eth1 -p tcp --dport 135:139 -j DROP

-A PREROUTING -i eth1 -p udp --dport 135:139 -j DROP

# seeing some traffic hitting broadcast via udp, got tired of seeing it in the logs.

-A PREROUTING -i eth1 -p udp -d 255.255.255.255 -j DROP

# punched a hole to allow access to gkrellm for monitoring

-A PREROUTING -i eth1 -p tcp --dport 19150 -j ACCEPT

# for a very strict firewall, this would be a good place to drop anything you werent explicitly expecting.

#-A PREROUTING -i eth1 -j LDROP

# this rule is very important, if the public interface address for eth1 changes, you must update this rule

# if this is going to be a dynamic address, you should just switch to MASQ instead of SNAT

-A POSTROUTING -s 192.168.10.0/255.255.255.0 -o eth1 -j SNAT --to-source 192.168.1.169

# setup the BANNED chain

-A BANNED -p tcp -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "pre-BANNED (tcp) " --log-level info

-A BANNED -p udp -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "pre-BANNED (udp) " --log-level info

-A BANNED -p icmp -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "pre-BANNED (icmp) " --log-level info

-A BANNED -f -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "pre-BANNED (fragment) " --log-level info

-A BANNED -j DROP

# setup the LOG & DROP chain

-A LDROP -p tcp -m limit --limit 30/min --limit-burst 3 -j LOG --log-prefix "pre-DROPPED (tcp) " --log-level info

-A LDROP -p udp -m limit --limit 30/min --limit-burst 3 -j LOG --log-prefix "pre-DROPPED (udp) " --log-level info

-A LDROP -p icmp -m limit --limit 30/min --limit-burst 3 -j LOG --log-prefix "pre-DROPPED (icmp) " --log-level info

-A LDROP -f -m limit --limit 30/min --limit-burst 3 -j LOG --log-prefix "pre-DROPPED (fragment) " --log-level info

-A LDROP -j DROP 

COMMIT

# Generated by iptables-save v1.2.9 on Fri Apr 30 02:26:35 2004

*filter

:INPUT DROP [0:0]

:FORWARD DROP [0:0]

:OUTPUT ACCEPT [0:0]

:TCPCHK - [0:0]

:ICMPCHK - [0:0]

:INETIN - [0:0]

:INETOUT - [0:0]

:LDROP - [0:0]

:MARTIAN - [0:0]

# internal network - disable this for production use (where inet interface isnt 192.168.1/24)

-A INPUT -s 192.168.1.0/255.255.255.0 -i eth1 -j INETIN

# as per draft-manning-dsua-03.txt, IANA Special Use Address blocks and NFC (no fscking clue)

# 0.0.0.0     - 0.255.255.255    (0/8 prefix)         RESERVED-1                   IANA SUA

# 127.0.0.0   - 127.255.255.255  (127/8 prefix)       LOOPBACK                     IANA SUA

# 192.0.2.0   - 192.0.2.255      (192.0.2/24 prefix)  NET-TEST                     IANA SUA

# 10.0.0.0    - 10.255.255.255   (10/8 prefix)        CLASS A private networks     RFC1918

# 172.16.0.0  - 172.31.255.255   (172.16/12 prefix)   CLASS B private networks     RFC1918

# 192.168.0.0 - 192.168.255.255  (192.168/16 prefix)  CLASS C private networks     RFC1918

# 224.0.0.0   - 239.255.255.255  (224/4 prefix)       CLASS D multicast addresses  RFC1166

# 240.0.0.0   - 247.255.255.255  (240/5 prefix)       CLASS E reserved addresses   RFC1166

# 248.0.0.0   - 255.255.255.255  (248/5 prefix)       CLASS E reserved addresses   RFC1166

# 169.254.0.0 - 169.254.255.255  (169.254/16 prefix)  AUTOCONFIGURATION            NFC

-A INPUT -s 0.0.0.0/255.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 127.0.0.0/255.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 192.0.2.0/255.255.255.0 -i eth1 -j MARTIAN

-A INPUT -s 10.0.0.0/255.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 172.16.0.0/255.240.0.0 -i eth1 -j MARTIAN

-A INPUT -s 192.168.0.0/255.255.0.0 -i eth1 -j MARTIAN

-A INPUT -s 224.0.0.0/240.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 240.0.0.0/248.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 248.0.0.0/248.0.0.0 -i eth1 -j MARTIAN

-A INPUT -s 169.254.0.0/255.255.0.0 -i eth1 -j MARTIAN 

#

-A INPUT -i eth1 -j INETIN 

-A INPUT -i lo -j ACCEPT 

# private local network (eth0)

-A INPUT -s 192.168.10.0/255.255.255.0 -i eth0 -j ACCEPT 

#

-A FORWARD -i eth1 -o eth0 -j INETIN 

-A FORWARD -s 192.168.10.0/255.255.255.0 -o eth1 -j INETOUT 

-A FORWARD -j LDROP 

-A OUTPUT -o eth1 -j INETOUT

-A OUTPUT -o eth0 -j ACCEPT

-A TCPCHK -p tcp --tcp-flags ALL NONE -m limit --limit 30/min -j LOG --log-prefix "NULL scan " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL NONE -j DROP 

-A TCPCHK -p tcp --tcp-flags ALL FIN,PSH,URG -m limit --limit 30/min -j LOG --log-prefix "XMAS scan " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL FIN,PSH,URG -j DROP 

-A TCPCHK -p tcp --tcp-flags ACK,FIN FIN -m limit --limit 30/min -j LOG --log-prefix "FIN scan " --log-level info

-A TCPCHK -p tcp --tcp-flags ACK,FIN FIN -j DROP 

-A TCPCHK -p tcp --tcp-flags ACK,URG URG -m limit --limit 30/min -j LOG --log-prefix "URG scan " --log-level info

-A TCPCHK -p tcp --tcp-flags ACK,URG URG -j DROP 

-A TCPCHK -p tcp --tcp-flags ACK,PSH PSH -m limit --limit 30/min -j LOG --log-prefix "PSH scan " --log-level info

-A TCPCHK -p tcp --tcp-flags ACK,PSH PSH -j DROP 

-A TCPCHK -p tcp --tcp-flags FIN,SYN FIN,SYN -m limit --limit 30/min -j LOG --log-prefix "SYN/FIN scan " --log-level info

-A TCPCHK -p tcp --tcp-flags FIN,SYN FIN,SYN -j DROP 

-A TCPCHK -p tcp --tcp-flags SYN,RST SYN,RST -m limit --limit 30/min -j LOG --log-prefix "SYN/RST scan " --log-level info

-A TCPCHK -p tcp --tcp-flags SYN,RST SYN,RST -j DROP 

-A TCPCHK -p tcp --tcp-flags FIN,RST FIN,RST -m limit --limit 30/min -j LOG --log-prefix "FIN/RST scan " --log-level info

-A TCPCHK -p tcp --tcp-flags FIN,RST FIN,RST -j DROP 

-A TCPCHK -p tcp --tcp-flags ACK,RST,SYN SYN -m limit --limit 10/sec -j ACCEPT 

-A TCPCHK -p tcp --tcp-flags ACK,RST,SYN SYN -m limit --limit 2/min --limit-burst 1 -j LOG --log-prefix "possible SYN scan/flood " --log-level info

-A TCPCHK -p tcp --tcp-flags ACK,RST,SYN SYN -j DROP 

-A TCPCHK -p tcp --tcp-flags ALL ACK -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK w/ NEW,RELATED " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL ACK -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL PSH,ACK -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL PSH,ACK -m state --state NEW -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL PSH,ACK -m state --state RELATED -m limit --limit 30/min -j LOG --log-prefix "PSH,ACK w/ RELATED " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL PSH,ACK -m state --state RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ALL -m limit --limit 30/min -j LOG --log-prefix "ALL tcp-flags " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL ALL -j DROP

-A TCPCHK -p tcp --tcp-flags SYN,FIN SYN,FIN -m limit --limit 30/min -j LOG --log-prefix "SYN,FIN " --log-level info

-A TCPCHK -p tcp --tcp-flags SYN,FIN SYN,FIN -j DROP

-A TCPCHK -p tcp --tcp-flags SYN,RST SYN,RST -m limit --limit 30/min -j LOG --log-prefix "SYN,RST " --log-level info

-A TCPCHK -p tcp --tcp-flags SYN,RST SYN,RST -j DROP

-A TCPCHK -p tcp --tcp-flags RST,FIN RST,FIN -m limit --limit 30/min -j LOG --log-prefix "RST,FIN " --log-level info

-A TCPCHK -p tcp --tcp-flags RST,FIN RST,FIN -j DROP

-A TCPCHK -p tcp --tcp-flags SYN,URG SYN,URG -m limit --limit 30/min -j LOG --log-prefix "SYN,URG " --log-level info

-A TCPCHK -p tcp --tcp-flags SYN,URG SYN,URG -j DROP

-A TCPCHK -p tcp --tcp-flags ALL PSH,SYN -m limit --limit 30/min -j LOG --log-prefix "PSH,SYN " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL PSH,SYN -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ACK,PSH,SYN -m limit --limit 30/min -j LOG --log-prefix "ACK,PSH,SYN " --log-level info

-A TCPCHK -p tcp --tcp-flags ALL ACK,PSH,SYN -j DROP

-A TCPCHK -p tcp --tcp-flags ACK,PSH PSH -m limit --limit 30/min -j LOG --log-prefix "PSH w/o ACK" --log-level info 

-A TCPCHK -p tcp --tcp-flags ACK,PSH PSH -j DROP

-A TCPCHK -p tcp --tcp-flags ACK,URG URG -m limit --limit 30/min -j LOG --log-prefix "URG w/o ACK" --log-level info 

-A TCPCHK -p tcp --tcp-flags ACK,URG URG -j DROP

-A TCPCHK -p tcp --tcp-flags ACK,RST,SYN NONE -m limit --limit 30/min -j LOG --log-prefix "no ACK, RST, or SYN " --log-level info 

-A TCPCHK -p tcp --tcp-flags ACK,RST,SYN NONE -j DROP

-A TCPCHK -p tcp --tcp-flags ALL RST -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL RST -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "RST w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL RST -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ACK,SYN NONE -m limit --limit 30/min -j LOG --log-prefix "no ACK, no SYN " --log-level info 

-A TCPCHK -p tcp --tcp-flags ACK,SYN NONE -j DROP

-A TCPCHK -p tcp --tcp-flags ALL SYN -m state --state NEW -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL SYN -m state --state RELATED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL SYN -m state --state ESTABLISHED -m limit --limit 30/min -j LOG --log-prefix "SYN w/ ESTABLISHED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL SYN -m state --state ESTABLISHED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ACK,SYN -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,SYN -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK,SYN w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL ACK,SYN -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL FIN,ACK -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,FIN -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK,FIN w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL ACK,FIN -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ACK,RST -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,RST -m state --state NEW -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,RST -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK,RST w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL ACK,RST -m state --state RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ACK,PSH,RST -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,PSH,RST -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK,PSH,RST w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL ACK,PSH,RST -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp --tcp-flags ALL ACK,FIN,PSH -m state --state ESTABLISHED -j RETURN

-A TCPCHK -p tcp --tcp-flags ALL ACK,FIN,PSH -m state --state NEW,RELATED -m limit --limit 30/min -j LOG --log-prefix "ACK,FIN,PSH w/ NEW,RELATED " --log-level info 

-A TCPCHK -p tcp --tcp-flags ALL ACK,FIN,PSH -m state --state NEW,RELATED -j DROP

-A TCPCHK -p tcp -m state --state INVALID -m limit --limit 30/min -j LOG --log-prefix "INVALID state " --log-level info 

-A TCPCHK -p tcp -m state --state INVALID -j DROP

#

-A ICMPCHK -p icmp --icmp-type 5 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP redirect " --log-level info 

-A ICMPCHK -p icmp --icmp-type 5 -j DROP 

-A ICMPCHK -p icmp --icmp-type 9 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP router advertisment " --log-level info 

-A ICMPCHK -p icmp --icmp-type 9 -j DROP 

-A ICMPCHK -p icmp --icmp-type 10 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP route solicitation " --log-level info 

-A ICMPCHK -p icmp --icmp-type 10 -j DROP 

-A ICMPCHK -p icmp --icmp-type 13 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP timestamp request " --log-level info 

-A ICMPCHK -p icmp --icmp-type 13 -j DROP 

-A ICMPCHK -p icmp --icmp-type 14 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP timestamp reply " --log-level info 

-A ICMPCHK -p icmp --icmp-type 14 -j DROP 

-A ICMPCHK -p icmp --icmp-type 15 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP info request " --log-level info 

-A ICMPCHK -p icmp --icmp-type 15 -j DROP 

-A ICMPCHK -p icmp --icmp-type 16 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP info reply " --log-level info 

-A ICMPCHK -p icmp --icmp-type 16 -j DROP 

-A ICMPCHK -p icmp --icmp-type 17 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP address mask request " --log-level info

-A ICMPCHK -p icmp --icmp-type 17 -j DROP 

-A ICMPCHK -p icmp --icmp-type 18 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP address mask reply " --log-level info

-A ICMPCHK -p icmp --icmp-type 18 -j DROP 

-A ICMPCHK -p icmp --icmp-type 8 -m limit --limit 2/sec --limit-burst 2 -j ACCEPT 

-A ICMPCHK -p icmp --icmp-type 8 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP excessive pings " --log-level info --log-tcp-sequence

-A ICMPCHK -p icmp --icmp-type 8 -j DROP 

-A ICMPCHK -p icmp ! --icmp-type 8 -m limit --limit 5/min --limit-burst 1 -j LOG --log-prefix "ICMP allowed " --log-level info 

-A ICMPCHK -p icmp ! --icmp-type 8 -j ACCEPT 

-A INETIN -p tcp -j TCPCHK

-A INETIN -p icmp -j ICMPCHK

-A INETIN -m state --state ESTABLISHED -j ACCEPT

-A INETIN -p tcp -m state --state RELATED --dport 1024:65535 -j ACCEPT 

-A INETIN -p udp -m state --state RELATED --dport 1024:65535 -j ACCEPT 

# allow dns

-A INETIN -p tcp --dport 53 -j ACCEPT 

-A INETIN -p udp --dport 53 -j ACCEPT 

# allow ssh

-A INETIN -p tcp --dport 22 -j ACCEPT

# gkrellm

-A INETIN -p tcp --dport 19150 -j ACCEPT

#

# default policy = log and drop

-A INETIN -p tcp -m limit --limit 30/min --limit-burst 1 -j LOG --log-prefix "DROPPED by policy (tcp) " --log-level info 

-A INETIN -p udp -m limit --limit 30/min --limit-burst 1 -j LOG --log-prefix "DROPPED by policy (udp) " --log-level info 

-A INETIN -p icmp -m limit --limit 30/min --limit-burst 1 -j LOG --log-prefix "DROPPED by policy (icmp) " --log-level info 

-A INETIN -f -m limit --limit 30/min --limit-burst 1 -j LOG --log-prefix "DROPPED by policy (fragment) " --log-level info 

# this effectively sets the policy to DROP, we could remove this and set it in the chain creation rule

-A INETIN -j DROP

# example drop in INETOUT chain

#-A INETOUT -d 1.2.3.4 -p tcp -j DROP 

-A INETOUT -j ACCEPT 

-A LDROP -p tcp -m limit --limit 30/min --limit-burst 2 -j LOG --log-prefix "DROPPED (tcp) " --log-level info 

-A LDROP -p udp -m limit --limit 30/min --limit-burst 2 -j LOG --log-prefix "DROPPED (udp) " --log-level info 

-A LDROP -p icmp -m limit --limit 30/min --limit-burst 2 -j LOG --log-prefix "DROPPED (icmp) " --log-level info 

-A LDROP -f -m limit --limit 30/min --limit-burst 2 -j LOG --log-prefix "DROPPED (fragment) " --log-level info 

-A LDROP -j DROP 

-A MARTIAN -m limit --limit 30/min --limit-burst 2 -j LOG --log-prefix "martian network " --log-level info 

-A MARTIAN -j DROP 

COMMIT

Linux-Noob Quotes DB

Posted by: znx - 2005-04-19, 08:27 PM - Forum: Site News - Replies (2)

	if you're a regular on irc then you'll know just how weird 90% of its regulars are, now for prosperity linux-noob quotes come read add point humiliate disgust annoy but most of all laugh :)

Fedora problem with BT V-100 ADSL Modem

Posted by: Sym - 2005-04-18, 06:43 PM - Forum: Fedora - Replies (4)

	Hey, Cool site. Had a search for what I'm looking for and I found the drivers for the BT Voyager 100 modem on some site and ran them(eciadsl-usermode-0.10-1.i386.rpm file) Restarted the system and I still cant connect to the internet. The device isn't recognised. I've also tried different USB ports too and nothing. Has someone a step-by-step walk though they could post for me.

Fedora and SB Audigy issues

Posted by: rSmEt - 2005-04-18, 05:53 AM - Forum: Fedora - Replies (5)

if you join #linux-noob on efnet we can help there in real time.. I'd be willing to guess your mixers aren't turned on and also turned up. Run alsamixer or use the gnome version of it to turn them up

EDIT: sorry i'm a dumbass and hit the wrong button :/ stupid me.. but ya try turning up your mixers

NOTE TO OTHERS:

he was having trouble with his sound.. Well there wasn't any.. everything looked ok. linux was picking up his card

Quote:here's the original post restored

--NOTE-- I posted this in How do I? but that was before I noticed this special Fedora thread.

I recently installed Fedora Core 3 to expierment with it. Unfortunately I am unable to get sound.

Kernel - 2.6.11-1.14_FC3

SoundCard - Sound Blaster Audigy

It detected the soundcard without a problem but when tyring to use xmms to get sound nothing happens. I went into the control center i tried hitting the test sound but nothing happened.

Screenshot of my info center displaying the sound information:

[/url]http://www.bright.net/~jlm612/infcent.png

Screenshot of my xmms configuration:

[url=http://www.bright.net/~jlm612/xmms.png]http://www.bright.net/~jlm612/xmms.png

Creative's website doesn't list a driver for my Audigy card but I figured a fairly popular card such as the audigy would work in Linux. I also tried using my onboard sound (nForce2 chipset) but that also failed to play back anything so I removed the configuration. Any help is much appreciated!

I did find a website guide of a guy showing the options he selected in order to get his audigy card to work as well as updating ALSA. Unfortunately all the kernel guides I find don't help me get the proper source together to re-compile the kernel so I don't know how. I tried just updating my ALSA stuff but that didn't resolve the issue. I'd be willing to even have someone SSH into my box and help me if anyone is willing. I'm desperate sad.gif

EDIT-- Also note that I did do the *fix* to get mp3's to play properly in xmms.

Drrrrty jokes...

Posted by: lia - 2005-04-15, 02:55 PM - Forum: Jokes - No Replies

The packie, looking for a job:

- Do you have a job for me?

- Ofcourse, you can become Manager in Volvo, free car and great salary and alot more.

- You are joking with me!?

- Yes, but you started it!

----------------------------------------------

A jew and a Swedish guy were sitting in the sauna when the hew said:

- I see that you too are circumsised.

- Circumsised? said the Swedish guy. In Sweden we call it 'being worn out'

----------------------------------------------

The teacher:

- Name a few human organs that we have two of!

-Ears, eyes, the kids respond.

- Penis!, little Karl says.

- But Karl, not even you boys have two of those?

- My father has! One small one that he pee's with and one big that he brushes mum's teeth with.

-------------------------------

*ewww*

Ati, wine and fc3.. combined...

Posted by: Arax - 2005-04-15, 02:46 PM - Forum: ATI Problems - Replies (1)

	I downloaded the ati drivers, but i'm not sure if its correctly installed.... I recompiled the kernel AFTER i ran the rpm. When i run glxinfo it sais that direct rendering is off, and i only get 200-300 fps on glxgears. Help?

Pages (380): « Previous 1 … 246 247 248 249 250 … 380 Next »

Login
Username/Email:
Password:	Lost Password?
	Remember me