All Questions
Tagged with networking iptables
960
questions
1
vote
0
answers
2k
views
NAT router sends RST to a server where a NAT'ed client is connected to
As I tried to remove some Ethernet wires in my home network, I took an older notebook with Linux and tried to use it as some kind of Ethernet-2-WiFi-NAT-router (Wi-Fi card can't act as bridge, so I ...
1
vote
1
answer
1k
views
iptables, redirect from ip address to loopback
I have an Apache web server listening in 127.0.0.1:63280
eth0 has IP: 172.200.200.200.1, and try to connect from workstation IP 172.200.200.200
iptables -t nat -A PREROUTING -s 172.200.200.200.1 -p ...
0
votes
1
answer
6k
views
Prevent device from reaching WAN traffic (MAC address for example) - OpenWRT
I want to forbid a device on my network from accessing the internet.
Computers still have to communicate with the device, and vice versa.
OpenWRT version: OpenWrt Attitude Adjustment 12.09
1
vote
1
answer
1k
views
How iptables behaves on timezone change?
I have doubt how iptables keep changing the info in iptables when timezone is change. I am using iptables s v 1.4.8
I have blocked one IP with following details
# date
Thu Jun 6 12:46:42 IST ...
1
vote
0
answers
297
views
Change UDP port with iptables for VPN clients
What I want to do is say that for all UDP connections on interface ppp0 that have a destination port of 53, change that destination port to 1053.
I am attempting to change the destination port of UDP ...
41
votes
3
answers
86k
views
No idea what is listening on port 80 in OS X
I'm on OSX Mountain Lion 10.8.3, and I've freshly rebooted my Mac.
I want to start a service (like Apache on port 80), but there is already something going on with port 80:
telnet localhost 80
...
0
votes
1
answer
215
views
Linux gateway / DNAT: restrict to certain interfaces
I have various machines with a number of network interfaces:
eth0: a local LAN
eth1: sometimes used for the connection to the Internet gateway
ppp0: Modem uplink as an alternative to eth1
tun0: ...
1
vote
1
answer
4k
views
Limit UDP outbound traffic to loopback (localhost) instead of eth0
Atm i'm testing it on Ubuntu Server at VMware Workstation + Windows 7 local host with bridged connection. Later this has to go to live server.
I have VLC streaming video file on Ubuntu with
cvlc -...
0
votes
2
answers
55
views
Problems in creating rules in iptable
Hello to all :) I need a little help with creating a rules. Im starting to learn iptables and firewalls but I have some questions. I need to allow HTTP communication only from PcA to PcB./
My code is:
...
1
vote
1
answer
11k
views
iptables rule for loopback interface lo
I want to test some network performance, where I need to use a tcp client to connect to a tcp server program on the same host, so I used localhost(127.0.0.1)
however, when the TCP SYN is sent, it get ...
0
votes
0
answers
2k
views
How does iptables masquerading allow to access a different local subnet?
My Linksys router (IP 192.168.1.1 inside a /24 subnet) is connected to my ADSL modem (IP 10.0.0.138 inside a /24 subnet) to establish an internet connection via PPPoE. To be able to access the modem's ...
1
vote
3
answers
2k
views
linux routing outbound port 80 traffic via ssh tunnel, iptables, or a simple route
I have two hosts, A and B. Host A hosts services on port 8080 and has outbound internet firewall rules allowing port 80 and 443 access to Host C.
Host B is on the same subnet as Host A. Host B is ...
2
votes
1
answer
6k
views
using iptables to prevent RST related to a specific port
I have a program which uses libpcap to capture incoming TCP SYN packets, these SYN packets are destined for a specific port.
But I have no tcp listening socket for that port, so in practice, the OS ...
0
votes
3
answers
498
views
iptables rules are not in action
I have a iptable rule file, on the INPUT chain I have
-A INPUT -i em1 -p tcp -m tcp --dport 54000 -j ACCEPT
-A INPUT -i em1 -p tcp -m tcp --dport 30000 -j ACCEPT
-A INPUT -i em1 -p udp -m udp --dport ...
1
vote
2
answers
3k
views
IPtables Rules to Block IP Range
I've applied the following rules from a text file called "iptables.save" to iptables.
But to my dismay, I found that the ip address 107.22.26.176 is still able to access my server via TCP.
What did ...