New user's registration have been closed due to high spamming and low trafic on this forum. Please contact forum admins directly if you need an account. Thanks !
Search found 1526 matches
- 26 Apr 2012, 14:29
- Forum: B2 & B3 Support
- Topic: port forwarding for guildwars2
- Replies: 2
- Views: 6522
Re: port forwarding for guildwars2
What you did should be sufficient as far as the Bubba is concerned. Most likely the cause of the issue is with your workstation. First off: the application needs to be running to open up port 6112 - was that the case when you checked with `canyouseeme`? If you're not afraid of the DOS prompt you can...
- 22 Apr 2012, 03:20
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
Re: Fail2ban or csf ?
Oh, but that's not the point. The geoip match is just a neat trick to limit as many people as possible without blocking myself when I'm in a known place with an unknown IP address. If you have no use for such a feature, then don't use it. The part that matches your particular search is the ipsets. T...
- 20 Apr 2012, 09:41
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
Re: Fail2ban or csf ?
How about I create a package for the software you need, so you can go straight to the example firewall script?
- 19 Apr 2012, 08:25
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
Populating the blacklist
I'm truly sorry. As said I have been experimenting with this setup in a VM and had not yet done any tests on the B3 itself. If you already installed ipset using aptitude then please remove it. You need to install from source to make this work. aptitude remove ipset cd /usr/src wget http://ipset.netf...
- 19 Apr 2012, 07:28
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
Example firewall script
Here's an example script: #!/bin/sh # Which countries to allow access to private services GEOIP_ALLOWED=NL,BE # Names of the ipsets used by the firewall IPSETS="blacklist whitelist" # Which modules to load (some do not auto-load) MODULES="nf_conntrack_ftp ip_set ip_set_hash_ip xt_geoi...
- 18 Apr 2012, 10:09
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
xtables-addons: Geoip
If you like to use the geoip match, you need to have a database (and maintain it regularly). Create the correct folder first (the location is hardcoded in the source): mkdir /usr/share/xt_geoip There are two scripts provided in the xtables-addons source to build the geoip database: a shell script th...
- 18 Apr 2012, 10:08
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
xtables-addons and ipset
Okay then... Here's a small draft. Let's start with required software. You need 'xtables-addons' and 'ipset' and you want 'sudo' (you need to be root to run ipset). Since not all of these are in the excito repository, we'll need to update the sources list: # Create new file squeeze.list in the sourc...
- 18 Apr 2012, 09:56
- Forum: B2 & B3 Feature Requests
- Topic: Please remove xfrm and netkey from the kernel
- Replies: 7
- Views: 20774
Please remove xfrm and netkey from the kernel
I know people have been nagging for these modules, but please make them modules and not part of the kernel. I can now no longer operate my VPN because xfrm and netkey are blocking KLIPS.
- 18 Apr 2012, 09:54
- Forum: Howtos
- Topic: Openswan (ipsec vpn) on the B3
- Replies: 1
- Views: 9934
Re: Openswan (ipsec vpn) on the B3
PROBLEM! I found 2 issues trying to activate my config: 1: The kernel source is corrupted. While compiling the module, it is stamped with an incorrect kernel version, causing it not to load. The fix appears to be to run the following patch content before doing anything else with the source: --- Make...
- 17 Apr 2012, 12:51
- Forum: Howtos
- Topic: Display the HDD temperature in the web portal [patch]
- Replies: 33
- Views: 71141
Re: Display the HDD temperature in the web portal [patch]
New patch file...
unpack with command (I'm not allowed to attach a file with .patch extension)
unpack with command (I'm not allowed to attach a file with .patch extension)
Code: Select all
tar -xzf gui-hddtemp.tgz
- 17 Apr 2012, 10:46
- Forum: Howtos
- Topic: Fail2ban or csf ?
- Replies: 10
- Views: 23050
Re: Fail2ban or csf ?
According to the home page CSF may require rewriting some regex rules on Debian. Sounds like tricky business. Fail2ban seems more promising to me, but that may be because I like Shorewall - I wrote a little howto on running this on the B3 just a few topics down. I'm not sure about the "TCP-Wrap...
- 15 Apr 2012, 16:08
- Forum: B2 & B3 Support
- Topic: WD green / Load Cycle
- Replies: 6
- Views: 5887
Re: WD green / Load Cycle
Hate to budge in, but just rebooting is not sufficient according to the announcements. You have to shut down, actually pull the cord and reconnect after having waited for a few seconds.
- 11 Apr 2012, 11:14
- Forum: Howtos
- Topic: Openswan (ipsec vpn) on the B3
- Replies: 1
- Views: 9934
Openswan (ipsec vpn) on the B3
For those that remember the problems I ran into trying to install Strongswan. Here's the howto for getting things back up with Openswan after upgrading to software version 2.4 (kernel 2.6.39) First we need to grab some sources, including the kernel source (don't worry - we're not going to do the len...
- 26 Mar 2012, 06:33
- Forum: B2 & B3 Support
- Topic: B3 not seen in all ip- networks
- Replies: 2
- Views: 9899
Re: B3 not seen in all ip- networks
Hi Rene, I'd guess UPC has explicitly configured their network to not allow routeback to other UPC customers. They'll most likely have done this to prevent customers from seeing each others Windows shares and probably don't care that this also blocks traffic that people might actually want. In fact,...
- 11 Mar 2012, 11:22
- Forum: B2 & B3 Support
- Topic: Assign /admin to port
- Replies: 7
- Views: 9715
Re: Assign /admin to port
First I would check with "apachectl -St" if your setup of port 8081 is actually working. apachectl: command not found Did you `su` to become root? Also, I'm not sure how to read the localhost:8081 bit. Are you using something like wget to verify that the server returns a page, or is this ...