[prev in list] [next in list] [prev in thread] [next in thread]
List: ipfilter
Subject: Re: Default Block Policy / SSH Rule Conflict
From: Jim Sandoz <sandoz () lucent ! com>
Date: 2006-04-26 19:19:16
Message-ID: 444FC7B4.5030907 () lucent ! com
[Download RAW message or body]
Bradford Fisher wrote:
> # Rules #
> # Inbound Traffic
hi brad,
we need a little more to go on.
- when you say "tunnel in", is the ssh server running on the
ipf firewall box or is it on a box behind the ipf firewall?
- does the rule number in iplog match up with the rules above?
- does the ssh rule work standalone, i.e. with no group?
- have you got any tcpdump/snoop output on the connection attempt?
you need to post the complete contents of ipf.conf and ipnat.conf,
along with some info on your network config.
otherwise this is just a guessing game.
put it all in one text file, run sed across it to obfuscate your
actual IP's, and post it.
e.g, say your ip is 123.45.67.89...
$ cat yourdata.txt | sed s/"123.45"/"X.Y"/g > yourdata2.txt
jim
ps
also see
http://www.phildev.net/ipf/IPFmail.html#mail3
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic