Search found 11 matches

by kpratte
February 28th, 2017, 10:30 pm
Forum: Development
Topic: Suggestion for iptables logging - Add DROP_*/REJECT_* prefix
Replies: 3
Views: 1132

Re: Suggestion for iptables logging - Add DROP_*/REJECT_* prefix

You could also not both reading through the logs if you have a Unix box available. I have mine configured to do remote syslog to my CentOS 7 box and then I use http://fwlogwatch.inside-security.de/ to process the logs and give me a daily summary.

- Ken
by kpratte
February 28th, 2017, 9:53 pm
Forum: Addons
Topic: Guardian ban - permanent
Replies: 7
Views: 1801

Re: Guardian ban - permanent

I just finished up doing something a little more elegant. Here is what I did: 1) Create/update /etc/sysconfig/firewall.local #!/bin/sh # Used for private firewall rules # See how we were called. BLACKLIST=`cat /etc/sysconfig/blacklist` #IFS=$'\n' case "$1" in start) ## add your 'start' rules here ip...
by kpratte
July 15th, 2015, 1:00 am
Forum: IPFire in General
Topic: firewall.local
Replies: 4
Views: 1452

Re: firewall.local

I made that mistake at first too.. Like ummeegge suggested, use CUSTOMxxxx chains. More information is here: http://wiki.ipfire.org/en/configuration ... wall.local

- Ken
by kpratte
July 14th, 2015, 10:02 pm
Forum: Development
Topic: Core 92 is available for testing
Replies: 21
Views: 3165

Re: Core 92 is available for testing

After doing the changes above, things work again. Thanks.
by kpratte
July 14th, 2015, 9:58 am
Forum: Installation
Topic: SNORT issue on Core 91
Replies: 3
Views: 868

Re: SNORT issue on Core 91

And you are going to need some memory for snort to run, mine is showing some 200MB of real memory being used.
by kpratte
July 14th, 2015, 9:55 am
Forum: IPFire in General
Topic: Redirect storage location for UpdateAccelerator
Replies: 3
Views: 772

Re: Redirect storage location for UpdateAccelerator

Provided you can mount the other disk, use a soft link.

# cd /var
# mv updatecache updatecache.old
# ln -s /newdrivemountpoint updatecache
# ls -l /var
You should see something like:
lrwxrwxrwx 1 root root <date> updatecache -> /newdrivemountpoint
by kpratte
July 14th, 2015, 1:07 am
Forum: Development
Topic: Core 92 is available for testing
Replies: 21
Views: 3165

Re: Core 92 is available for testing

Looks just like my install and same exact problem.. Before update: [root@ipfire httpd]# zcat error_log.1.gz [Sun Jul 05 01:01:00 2015] [notice] Digest: generating secret for digest authentication ... [Sun Jul 05 01:01:00 2015] [notice] Digest: done [Sun Jul 05 01:01:00 2015] [notice] Apache/2.2.29 (...
by kpratte
May 15th, 2015, 2:18 pm
Forum: Development
Topic: Report Addon on Wishlist
Replies: 8
Views: 1188

Re: Report Addon on Wishlist

You looking to do something like this: http://fwlogwatch.inside-security.de/ (Google fwlogwatch for what the report looks like). I currently take the fw logs and also ship the IDS alerts to another Linux box and run that report for my firewall.

- Ken
by kpratte
May 7th, 2015, 1:01 am
Forum: Addons
Topic: Question abour installation of VmWare Tools.
Replies: 5
Views: 3203

Re: Question abour installation of VmWare Tools.

Or skip it entirely and load the openvmtools via pakfire. It gives you most of the features, if not all and vCenter reports that VMware tools are running "3rd-party/Independent", but everything works fine.

- Ken
by kpratte
March 28th, 2015, 7:55 pm
Forum: IPFire in General
Topic: Issue: QOS Classes disappearing out-of-the-blue?
Replies: 3
Views: 838

Re: Issue: QOS Classes disappearing out-of-the-blue?

don't use browser navigation to go back without save, this will erase the showed class (always use "save" even if you have nothing changed.
This was the issue I had with QoS too. Once I noticed that, I didn't have any other problems with QoS. Was able to get all of my classes working.
by kpratte
March 26th, 2015, 3:16 pm
Forum: Addons
Topic: miniupnpd - what is it and how to use it
Replies: 2
Views: 1498

Re: miniupnpd - what is it and how to use it

I scribbled my notes in the wiki, enjoy.

- Ken