Search found 41 matches

by cbrown
November 5th, 2019, 11:09 am
Forum: IPFire in General
Topic: How can we improve the IPFire Forums?
Replies: 75
Views: 6263

Re: How can we improve the IPFire Forums?

How would the new single sign-on solution with people.ipfire.org account work with Bugzilla? When I sign-on at https://bugzilla.ipfire.org, the Log In prompt is hell-bent on requiring an email address. What would one enter as email address that would somehow correspond to the people.ipfire.org accou...
by cbrown
October 22nd, 2019, 7:56 pm
Forum: Hardware
Topic: [Solved] Intel Wireless Advanced-N 6235 (rev 24)
Replies: 2
Views: 327

Re: Intel Wireless Advanced-N 6235 (rev 24)

Thanks Arne,
I picked up a used Hawking USB HWUN3 off eBay -- that did the trick

Edit: Not exactly "solved" but moving forward with a workable solution 8)
by cbrown
October 18th, 2019, 1:35 am
Forum: Hardware
Topic: [Solved] Intel Wireless Advanced-N 6235 (rev 24)
Replies: 2
Views: 327

[Solved] Intel Wireless Advanced-N 6235 (rev 24)

I just did a fresh install of Core 136. Trying to use this Intel part for Red Wireless Client. It shows in compatibility list as tested in Core 75. I'm getting a bunch of barf in /var/log/messages but it never connects. Anyone have a clue as to what I'm missing here? Edit: This is a Qotom Quad Core ...
by cbrown
August 13th, 2019, 1:44 am
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 54
Views: 5719

Re: Intrusion Prevention System - core 131

Curious about net setup up for Pi-Hole. Can I hang the RP/Pi-Hole box off my green net with a fixed address and then assign my IPFire DNS Server Address to be the Pi-Hole?
by cbrown
June 26th, 2019, 2:34 pm
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 54
Views: 5719

Re: Intrusion Prevention System - core 131

A sweet bit of hacking there, H&M ;D
Any chance this capability would make it into IPFire 2.x in the next few months?

-cb
by cbrown
June 5th, 2019, 11:54 pm
Forum: IPFire in General
Topic: Internet Traffic Targeting Blue-to-Green OpenVPN tun0 Address
Replies: 0
Views: 249

Internet Traffic Targeting Blue-to-Green OpenVPN tun0 Address

I recently noticed a disturbing packet dropped by timfprogs/blocklist tool for the TOR_ALL list. I use OpenVPN to access Green from Blue. The blocked packet was targeting my OpenVPN Tun0 address 10.42.241.14 port 123 (NTP). What disturbs me is the idea that some external entity could be aware of the...
by cbrown
May 26th, 2019, 12:26 am
Forum: IPFire in General
Topic: [Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes
Replies: 5
Views: 431

Re: [Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes

Hi TimF, The block-lists for FEODO_BAD_IP and FEODO_IP get errors after downloading and do not load any entries in 'ipset' The errors consist of a long list of: Use of uninitialized value $address in pattern match (m//) at /usr/local/bin/blocklist.pl line 634, <LIST> line 152. Use of uninitialized v...
by cbrown
May 24th, 2019, 3:22 pm
Forum: IPFire in General
Topic: [Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes
Replies: 5
Views: 431

Re: timfprogs/ipfblocklist -- Safe, Pkts, Bytes

TimF,

Wow, thanks for the comprehensive reply :)

-cbrown
by cbrown
May 24th, 2019, 8:14 am
Forum: IPFire in General
Topic: [Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes
Replies: 5
Views: 431

Re: timfprogs/ipfblocklist -- Safe, Pkts, Bytes

Okay, after a reboot I see counts increasing for pkts and bytes for CIARMY – along with DROP_CIARMY entries in Firewall log. I was confused earlier by the blanks showing earlier ( blanks not even zeroes ) for CIARMY in the image above. I’m still unclear on the meaning of Safe I suppose this topic wo...
by cbrown
May 23rd, 2019, 7:37 pm
Forum: IPFire in General
Topic: [Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes
Replies: 5
Views: 431

[Solved] timfprogs/ipfblocklist -- Safe, Pkts, Bytes

TimF, My simple cave-man brain is having trouble making sense out of the columns for Safe, Pkts, Bytes. Could you point me to something that explains what the corresponding values mean? Safe -- Safe to block? Pkts -- Packets blocked? Bytes -- Bytes blocked? CIARMY seems to have the highest volume of...
by cbrown
May 22nd, 2019, 3:43 pm
Forum: IPFire in General
Topic: [Solved] Whitelisted Host Stops Getting White Listed
Replies: 4
Views: 323

Re: Whitelisted Host Stops Getting White Listed

I just did a manual rule update with 'update-ids-ruleset' then checked 'System Logs->Intrusion Prevention'. The log shows: [ERRCODE: SC_ERR_NO_RULES(42)] - No rule files match the pattern /var/lib/surica ta/whitelist.rules I then ran a manual update for timfprogs/ipfblocklist. The blocklist update f...
by cbrown
May 22nd, 2019, 2:39 pm
Forum: IPFire in General
Topic: [Solved] Whitelisted Host Stops Getting White Listed
Replies: 4
Views: 323

Re: Whitelisted Host Stops Getting White Listed

FWIW, the whitelisted host is the repository for “The CINS Army List” used by the timfprogs/ipfblocklist feature. So, the traffic getting blocked is coming from my IPFire box going to the whitelisted host. Again, this seems to work fine for several hours – with the whitelisted site being successfull...
by cbrown
May 22nd, 2019, 12:35 pm
Forum: IPFire in General
Topic: [Solved] Whitelisted Host Stops Getting White Listed
Replies: 4
Views: 323

[Solved] Whitelisted Host Stops Getting White Listed

It seems that at least one of the entries I have in "Intrusion Prevention System->Whitelisted Hosts" stops getting whitelisted after some period of time. Over the course of several hours of running without issue, the rule that blocks this address starts blocking it again. I will continue to monitor ...