* Tracing the passage of packets thru the various chains
@ 2004-11-06 12:19 Taso Hatzi
2004-11-06 13:53 ` John A. Sullivan III
0 siblings, 1 reply; 8+ messages in thread
From: Taso Hatzi @ 2004-11-06 12:19 UTC (permalink / raw)
To: netfilter
The subject says what I want to do. Is there any way I can get a
stock kernel (Mdk 9.1 in this case) to show me what's going on?
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Tracing the passage of packets thru the various chains
2004-11-06 12:19 Tracing the passage of packets thru the various chains Taso Hatzi
@ 2004-11-06 13:53 ` John A. Sullivan III
2004-11-06 14:26 ` George Alexandru Dragoi
0 siblings, 1 reply; 8+ messages in thread
From: John A. Sullivan III @ 2004-11-06 13:53 UTC (permalink / raw)
To: Taso Hatzi; +Cc: Netfilter users list
On Sat, 2004-11-06 at 07:19, Taso Hatzi wrote:
> The subject says what I want to do. Is there any way I can get a
> stock kernel (Mdk 9.1 in this case) to show me what's going on?
Yes, we do it all the time when trouble shooting in the ISCS network
security management project (http://iscs.sourceforge.net). Simply use
the LOG target. What the LOG rule should look like and where it should
be placed depends on what you want to do but that's what we generally
use to troubleshoot problems between wire in and wire out! Hope that
sends you in the right direction - John
--
John A. Sullivan III
Open Source Development Corporation
Financially sustainable open source development
http://www.opensourcedevel.com
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Tracing the passage of packets thru the various chains
2004-11-06 13:53 ` John A. Sullivan III
@ 2004-11-06 14:26 ` George Alexandru Dragoi
2004-11-06 15:18 ` For Mailers Mangesh Rakhunde
0 siblings, 1 reply; 8+ messages in thread
From: George Alexandru Dragoi @ 2004-11-06 14:26 UTC (permalink / raw)
To: Netfilter users list
There is a patch in patch-o-matic which add a target called TRACE
http://www.netfilter.org/patch-o-matic/pom-extra.html#pom-extra-TRACE
On Sat, 06 Nov 2004 08:53:34 -0500, John A. Sullivan III
<jsullivan@opensourcedevelopmentcorp.com> wrote:
> On Sat, 2004-11-06 at 07:19, Taso Hatzi wrote:
>
>
> > The subject says what I want to do. Is there any way I can get a
> > stock kernel (Mdk 9.1 in this case) to show me what's going on?
> Yes, we do it all the time when trouble shooting in the ISCS network
> security management project (http://iscs.sourceforge.net). Simply use
> the LOG target. What the LOG rule should look like and where it should
> be placed depends on what you want to do but that's what we generally
> use to troubleshoot problems between wire in and wire out! Hope that
> sends you in the right direction - John
> --
> John A. Sullivan III
> Open Source Development Corporation
> Financially sustainable open source development
> http://www.opensourcedevel.com
>
>
--
Bla bla
^ permalink raw reply [flat|nested] 8+ messages in thread
* For Mailers
2004-11-06 14:26 ` George Alexandru Dragoi
@ 2004-11-06 15:18 ` Mangesh Rakhunde
2004-11-06 16:53 ` Alistair Tonner
` (2 more replies)
0 siblings, 3 replies; 8+ messages in thread
From: Mangesh Rakhunde @ 2004-11-06 15:18 UTC (permalink / raw)
To: 'Netfilter users list'
Hi
Can we put any filters for mail attachments. Like discarding mails with
infected attachments
Regards
Mangesh
^ permalink raw reply [flat|nested] 8+ messages in thread* Re: For Mailers
2004-11-06 15:18 ` For Mailers Mangesh Rakhunde
@ 2004-11-06 16:53 ` Alistair Tonner
2004-11-06 18:18 ` unknown config key 'Repository:' Roger Villavicencio
2004-11-07 17:50 ` For Mailers Leonardo Rodrigues Magalhães
2 siblings, 0 replies; 8+ messages in thread
From: Alistair Tonner @ 2004-11-06 16:53 UTC (permalink / raw)
To: netfilter
On November 6, 2004 10:18 am, Mangesh Rakhunde wrote:
> Hi
> Can we put any filters for mail attachments. Like discarding mails with
> infected attachments
No, iptables works at a lower layer of the stack than would be required for
this --
Mail daemons have lots of addons to manage virus scanning of incoming and
outgoing mail .... including dumping infected emails/marking them etc.
Alistair.
> Regards
>
> Mangesh
^ permalink raw reply [flat|nested] 8+ messages in thread
* unknown config key 'Repository:'
2004-11-06 15:18 ` For Mailers Mangesh Rakhunde
2004-11-06 16:53 ` Alistair Tonner
@ 2004-11-06 18:18 ` Roger Villavicencio
2004-11-08 17:11 ` Roger Villavicencio
2004-11-07 17:50 ` For Mailers Leonardo Rodrigues Magalhães
2 siblings, 1 reply; 8+ messages in thread
From: Roger Villavicencio @ 2004-11-06 18:18 UTC (permalink / raw)
To: 'Netfilter users list'
I'm compiling the patch-o-matic and give me this error:
root@fw:/usr/src/patch-o-matic-ng-20040621# KERNEL_DIR=/usr/src/linux
IPTABLES_DIR=/usr/src/iptables/ ./runme base
Loading patchlet
definitions.................................................................
.............................................unknown config key
'Repository:' in ./patch-o-matic-ng/info at ./runme line 216
What can I do?
I have:
- linux-2.6.9
- patch-o-matic-ng-20040621
- iptables-1.2.11
^ permalink raw reply [flat|nested] 8+ messages in thread
* unknown config key 'Repository:'
2004-11-06 18:18 ` unknown config key 'Repository:' Roger Villavicencio
@ 2004-11-08 17:11 ` Roger Villavicencio
0 siblings, 0 replies; 8+ messages in thread
From: Roger Villavicencio @ 2004-11-08 17:11 UTC (permalink / raw)
To: 'Netfilter users list'
I'm compiling the patch-o-matic and give me this error:
root@fw:/usr/src/patch-o-matic-ng-20040621# KERNEL_DIR=/usr/src/linux
IPTABLES_DIR=/usr/src/iptables/ ./runme base
Loading patchlet
definitions.................................................................
.............................................unknown config key
'Repository:' in ./patch-o-matic-ng/info at ./runme line 216
What can I do?
I have:
- linux-2.6.9
- patch-o-matic-ng-20040621
- iptables-1.2.11
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: For Mailers
2004-11-06 15:18 ` For Mailers Mangesh Rakhunde
2004-11-06 16:53 ` Alistair Tonner
2004-11-06 18:18 ` unknown config key 'Repository:' Roger Villavicencio
@ 2004-11-07 17:50 ` Leonardo Rodrigues Magalhães
2 siblings, 0 replies; 8+ messages in thread
From: Leonardo Rodrigues Magalhães @ 2004-11-07 17:50 UTC (permalink / raw)
To: kerneltrap, 'Netfilter users list'
Sure you can do any kind of filtering in mail attachments. But this is a
tooooo-complex-specific-protocol-handling to being handled by netfilter.
Please take a look in your MTA documentation and check some mailing list of
your MTA.
Sincerily,
Leonardo Rodrigues
----- Original Message -----
From: "Mangesh Rakhunde" <kerneltrap@v1khelkedekho.com>
To: "'Netfilter users list'" <netfilter@lists.netfilter.org>
Sent: Saturday, November 06, 2004 12:18 PM
Subject: For Mailers
> Hi
> Can we put any filters for mail attachments. Like discarding mails with
> infected attachments
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2004-11-08 17:11 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-11-06 12:19 Tracing the passage of packets thru the various chains Taso Hatzi
2004-11-06 13:53 ` John A. Sullivan III
2004-11-06 14:26 ` George Alexandru Dragoi
2004-11-06 15:18 ` For Mailers Mangesh Rakhunde
2004-11-06 16:53 ` Alistair Tonner
2004-11-06 18:18 ` unknown config key 'Repository:' Roger Villavicencio
2004-11-08 17:11 ` Roger Villavicencio
2004-11-07 17:50 ` For Mailers Leonardo Rodrigues Magalhães
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox