On Tue, 2002-01-15 at 00:11, Russell Hires wrote:
> I got the script working just fine, but when it's active it kills my smtp
> mail sending...I guess I'll go through the firewall presentation to figure
> out how to add a rule to allow mail to be sent via smtp.
Huh?????
What shows up in your logfiles? Is anything getting denied? The way
that script works is that ANYTHING _outbound_ should be allowed - only
incoming connections are blocked. Are you trying to deliver your mail
to the firewall to relay it outbound? (Even so, the script should allow
any incoming connections to the firewall from the internal network.)
> On the machines behind the firewall, I had to do some basic configuration of
> dns, since names wouldn't resolve...
That's also a little wierd. I've never noticed anything because I run a
DNS server on my internal network at home, but we've put that script on
firewall machines facing RoadRunner with Windows boxes behind and
they've been able to get DNS and do all the other things that normally
need to happen.
(Lack of DNS might also affect SMTP traffic depending on how you have
your mailer set up.)
Are you getting things getting denied in your logs? I really think
there's something a little messed up there...
> Another question I have is about how to make it activate when I boot up. I've
> thought about putting it in my /etc/init.d (since that's where debian puts
> its startup files), but it doesn't really fit, since running the script
> always has the effect of turning on the firewall.
I usually keep in root's home directory and then make a symlink to some
appropriate /etc/rc?.d directory, usually something like
/etc/rc2.d/S90iptables.
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
#!/usr/bin/perl -w
$_='while(read+STDIN,$_,2048){$a=29;$b=73;$c=142;$t=255;@t=map
{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;
$t^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)
[$_%8]}(16..271);if((@a=unx"C*",$_)[20]&48){$h=5;$_=unxb24,join
"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
unxV,xb25,$_;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=$t&($d
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*
8^$q<<6))<<9,$_=$t[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}
print+x"C*",@a}';s/x/pack+/g;eval
usage: qrpff 153 2 8 105 225 < /mnt/dvd/VOB_FILENAME \
| extract_mpeg2 | mpeg2dec -
http://www.cs.cmu.edu/~dst/DeCSS/Gallery/
http://www.eff.org/ http://www.anti-dmca.org/
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 18:59:01 EDT