Search found 157 matches

Go to advanced search

by Deepcuts
May 26th, 2017, 8:33 pm
Forum: IPFire in General
Topic: URL Filter blocking a page, can't find the rule that is blocking it
Replies: 2
Views: 55

Re: URL Filter blocking a page, can't find the rule that is blocking it

Maybe the option "Block sites accessed by it's IP address" is checked on URL Filter settings page?
by Deepcuts
May 26th, 2017, 3:54 am
Forum: IPFire in General
Topic: Snort Rules Update
Replies: 37
Views: 6883

Re: Snort Rules Update

@H&M
Check viewtopic.php?f=27&t=18750#p107603
Only the 1st two snippets.
by Deepcuts
May 25th, 2017, 6:02 am
Forum: IPFire in General
Topic: Unbound - best way to switch blocking on and off???
Replies: 2
Views: 85

Re: Unbound - best way to switch blocking on and off???

Just setup a public DNS only on her machine and be done with it.
by Deepcuts
May 25th, 2017, 6:00 am
Forum: IPFire in General
Topic: Snort is not starting
Replies: 9
Views: 146

Re: Snort is not starting

Just do a fresh install. 30 min and you are clear.
by Deepcuts
May 24th, 2017, 5:05 pm
Forum: IPFire in General
Topic: [SOLVED] Block users not using proxy on the Green network from accessing the internet
Replies: 15
Views: 216

Re: Block users not using proxy on the Green network from accessing the internet

I am not aware of any method that will accomplish this setup. Sorry.
by Deepcuts
May 24th, 2017, 5:01 pm
Forum: IPFire in General
Topic: Snort is not starting
Replies: 9
Views: 146

Re: Snort is not starting

I guess this one is my bad. This script is from a sistem using PPPoE as WAN interface.
run: ifconfig -a on ipfire shell.
See which one is your WAN interface.
Replace ppp0 with your WAN name on /etc/init.d/snort file
by Deepcuts
May 24th, 2017, 7:06 am
Forum: IPFire in General
Topic: Simple question but I need help.
Replies: 18
Views: 177

Re: Simple question but I need help.

It is possible if you use DNS block method.
A minimal script can run via cron to enable/disable specific rules at desired intervals.
by Deepcuts
May 23rd, 2017, 4:29 pm
Forum: IPFire in General
Topic: Snort is not starting
Replies: 9
Views: 146

Re: Snort is not starting

/bin/bash^M: bad interpreter: No such file or directory is caused by dos carriage returns most likely
Remove all dos carriage returns from the file and try again.
You can try running the command below in the directory where update.sh resides:

Code: Select all

sed -i -e 's/\r$//' update.sh
by Deepcuts
May 23rd, 2017, 11:58 am
Forum: IPFire in General
Topic: Not able to SSH or webgui but internet connection and network still working
Replies: 25
Views: 324

Re: Not able to SSH or webgui but internet connection and network still working

Postby Arne.F » February 22nd, 2016, 11:23 am

To accept all incoming connections from green run:

iptables -A CUSTOMINPUT -i green0 -j ACCEPT

But be carefull now all connections from green to the IPFire will accepted until you remove this rule or reboot....
by Deepcuts
May 23rd, 2017, 11:54 am
Forum: IPFire in General
Topic: daly quota
Replies: 2
Views: 129

Re: daly quota

Sorry for off-topic, but 300 mb? Daaaamn
And 128 kbps after? Double daaamn :)
Is this for a public hot spot?
by Deepcuts
May 23rd, 2017, 11:48 am
Forum: IPFire in General
Topic: Snort is not starting
Replies: 9
Views: 146

Re: Snort is not starting

Try this: Save this as update.pl in /var/ipfire/snort/ folder #!/usr/bin/perl my $oinkcode=''; my $url1="https://www.snort.org/rules/snortrules-snapshot-2982.tar.gz?oinkcode=$oinkcode"; my $url2="http://rules.emergingthreats.net/open/snort-2.9.0/emerging.rules.tar.gz"; my @df = `...
by Deepcuts
May 23rd, 2017, 5:06 am
Forum: IPFire in General
Topic: [SOLVED] Block users not using proxy on the Green network from accessing the internet
Replies: 15
Views: 216

Re: Block users not using proxy on the Green network from accessing the internet

For example, using facebook.com 1. block all LAN access to any external DNS servers via firewall rules. 2. setup your LAN machines to use only your IPFire DNS. 3. create a file touch /etc/unbound/local.d/blocked.conf 4. edit /etc/unbound/local.d/blocked.conf and add: local-data: "facebook.com A...
by Deepcuts
May 22nd, 2017, 10:21 pm
Forum: IPFire in General
Topic: [SOLVED] Block users not using proxy on the Green network from accessing the internet
Replies: 15
Views: 216

Re: Block users not using proxy on the Green network from accessing the internet

Glad you sorted it out with the firewall. As for distributing proxy settings via DHCP, you should note it only works for Web Browsers. https://en.wikipedia.org/wiki/Web_Proxy_Auto-Discovery_Protocol Other programs that might need internet access will most likely not use it and on top of that users c...
by Deepcuts
May 22nd, 2017, 2:32 pm
Forum: IPFire in General
Topic: [SOLVED] Block users not using proxy on the Green network from accessing the internet
Replies: 15
Views: 216

Re: Block users not using proxy on the Green network from accessing the internet

Was thinking you are using transparent proxy. Why would you go and setup each client to use a manual proxy is beyond me. You can still block access to https sites via DNS and still benefit from transparent proxy setup. Just tested some firewall rules and for me, these rules will block everything but...
by Deepcuts
May 22nd, 2017, 12:00 pm
Forum: IPFire in General
Topic: [SOLVED] Block users not using proxy on the Green network from accessing the internet
Replies: 15
Views: 216

Re: Block users not using proxy on the Green network from accessing the internet

I am not sure I understood your setup entirely, but, if you allow access to your proxy port and to your local dns, this will allow all users to access any website (through the proxy) that your proxy allows.
Also, just checking: you are aware that URL filtering does not work on https, right?

Go to advanced search