Search found 457 matches

by twilson
August 24th, 2016, 12:02 pm
Forum: IPFire in General
Topic: DNS redirection not quite working?
Replies: 10
Views: 3019

Re: DNS redirection not quite working?

Hello Arne,

opened bug #11168 (https://bugzilla.ipfire.org/show_bug.cgi?id=11168).

Best regards,
Timmothy Wilson
by twilson
August 24th, 2016, 10:13 am
Forum: IPFire in General
Topic: DNS redirection not quite working?
Replies: 10
Views: 3019

Re: DNS redirection not quite working?

Hello, changing "target" to "networks|any" does not work (see screenshot). My rule is: Source: Networks|GREEN NAT: Destination NAT|Firewall-Interface: -automatic- Target: Firewall|GREEN Protocol: -Preset-|Service-Group|DNS @Arne: If possible, could you post your equivalent rule here? Thanks in advan...
by twilson
August 24th, 2016, 10:00 am
Forum: Entwicklung
Topic: Portspoof
Replies: 192
Views: 47309

Re: Portspoof

Hallo UE, danke für den Verbesserungsvorschlag, er scheint gut zu funktionieren. Die Sache mit $0 war insofern etwas problematisch, als dass die Initskripte einen ganzen Rattenschwanz an Funktionen nachladen, die doch recht kompliziert sind. Und wie man an deinem Codeschnipsel sehen kann, ist das ni...
by twilson
August 24th, 2016, 9:57 am
Forum: IPFire in General
Topic: DNS redirection not quite working?
Replies: 10
Views: 3019

Re: DNS redirection not quite working?

Hello, Update: the wiki is buggy. The target must be "ANY" not Firewall* This experiment proves that Arne is right: twilson@styx2:~> dig a dnssec-failed.org ; <<>> DiG 9.9.9-P1 <<>> a dnssec-failed.org ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 23703 ...
by twilson
August 13th, 2016, 12:48 pm
Forum: Entwicklung
Topic: Portspoof
Replies: 192
Views: 47309

Re: Portspoof

Hallo UE, hier mal ein erster Vorschlag (diff-Ausgabe): 67a68,96 > # in this case, $PORT is already in use. :-( > # check if it is used by portspoof... > cat ${FWL} | grep -A 1 "Portspoof log" | grep "dport" | grep ${PORT} 2> /dev/null > /dev/null; > if [ "$?" = "0" ]; then > # in this case, portspo...
by twilson
August 8th, 2016, 12:00 pm
Forum: Entwicklung
Topic: Portspoof
Replies: 192
Views: 47309

Re: Portspoof

Hallo UE, sorry für die späte Antwort. Nein, einen Restart habe ich nicht probiert, mache ich aber beim nächsten Mal. :) Schade, dass sich das Projekt seitens des Upstream momentan im Tiefschlaf befindet, ein PID-File ist aber meines Erachtens eine gute Idee. Ich stelle mir das in etwa so vor: Ports...
by twilson
July 21st, 2016, 10:55 am
Forum: Development
Topic: Yet another request for SSL filtering
Replies: 7
Views: 2983

Re: Yet another request for SSL filtering

Hello, Basically i agree with both of you. But as always in the Linux world i would prefer to have an easy choice to activate/deactivate such filtering with one click. I would benefit from filtering TLS as i am using IPFire in schools and there im not able to block sites like facebook or porn sites ...
by twilson
July 21st, 2016, 10:46 am
Forum: Generelle Fragen
Topic: Portscan wird nicht erkannt
Replies: 17
Views: 2930

Re: Portscan wird nicht erkannt

Hallo, @twsilson Danke für den Tipp, wie bekommst du die Listen in die Firewall, gibt es da ein Addon? Und muss man dieses dann selbständig aktuell halten oder übernimmt das auch das Addon? @all Wie sieht es eigentlich mit dem Guardian 2.0 aus, wann wird denn dieser mal als "Addon" offiziell angebot...
by twilson
July 10th, 2016, 11:31 am
Forum: Generelle Fragen
Topic: Portscan wird nicht erkannt
Replies: 17
Views: 2930

Re: Portscan wird nicht erkannt

Hallo, stimmt, professionell durchgeführte Scans lassen sich schwer entdecken. Gegen Skript-Kiddies und Amateure können die Scan-Regeln aber trotzdem etwas ausrichten, wenn sie denn aktiviert wären. M.E. sind Blacklisten besser geeignet (z.B. Spamhaus' DROP-Liste); auf allen IPFires, die ich adminis...
by twilson
July 10th, 2016, 11:25 am
Forum: IPFire in General
Topic: rewrote snort wiki article
Replies: 3
Views: 1433

Re: rewrote snort wiki article

Hello, thanks for the replies. I will add missing parts within the next week (hopefully :D ). Guardian still doesn't work on x64 build at least for me. Or is there a way to get it working now? Maybe should say in guide that it isn't working on x64 so people don't wonder why. Could you write this int...
by twilson
July 10th, 2016, 11:24 am
Forum: Development
Topic: Yet another request for SSL filtering
Replies: 7
Views: 2983

Re: Yet another request for SSL filtering

Hello, as already discussed some times in this forum, I personally don't believe that SSL/TLS filtering is a solution. First, SSL/TLS is for privacy, and it is certainly doing a great job here. In companies, it might be a security risk (sometimes), but in SOHO networks, it is not. Second, a central ...
by twilson
July 2nd, 2016, 1:50 pm
Forum: IPFire in General
Topic: rewrote snort wiki article
Replies: 3
Views: 1433

rewrote snort wiki article

Hello, just rewrote the snort (IDS) article in the wiki: http://wiki.ipfire.org/en/configuration/services/ids In my opinion, it is kind of an improvement. Feedback, comments, etc. welcome! Best regards, Timmothy Wilson P.S.: Perhaps a correction reading would be good since I'm not a native speaker. :)
by twilson
July 2nd, 2016, 1:46 pm
Forum: Generelle Fragen
Topic: Portscan wird nicht erkannt
Replies: 17
Views: 2930

Re: Portscan wird nicht erkannt

Hallo,

in der Tat, die eigentlich "interessanten" nmap-Portscan-Regeln sind im IDS nicht per default aktiv.
Müssen also manuell aktiviert werden, allerdings scheint jedes Update der IDS-Regeln diese Einstellung zu überschreiben. :-\

Gruß,
Timmothy Wilson
by twilson
July 2nd, 2016, 1:44 pm
Forum: IPFire in General
Topic: moved from ipcop to ipfire and have som webproxy issues
Replies: 5
Views: 2306

Re: moved from ipcop to ipfire and have som webproxy issues

Hello,

indeed, I am getting an error from the site, too (see attachment).

Sadly, there are no log entries in the firewall log and the URL filter log. It looks like an analysis of this page is needed in order to find the error. :(

Best regards,
Timmothy Wilson
by twilson
June 2nd, 2016, 8:08 am
Forum: IPFire in General
Topic: moved from ipcop to ipfire and have som webproxy issues
Replies: 5
Views: 2306

Re: moved from ipcop to ipfire and have som webproxy issues

Hello,

which URL filter source are you using?

On my system (Shalla Secure Services, updated daily), I can access the site and choose a language.

Best regards,
Timmothy Wilson