Dumb question

Dumb question

[Robin Lynn Frank]

[-- Attachment #1: Type: text/plain, Size: 553 bytes --]

Apologies if this is a dumb question but I am new to manipulating
iptables directly.  There is a pest that has been routinely probing us. 
While we simply drop them, I'd like to make it "uncomfortable" for them
to continue.  When I attempt the following, I get the response
indicated.  We are running Mandrake Linus 10.0 Official with a 2.6
kernel.

# /sbin/iptables -A INPUT -s ###.###.#.### -j TARPIT
iptables: No chain/target/match by that name

Any help is appreciated.
-- 
Robin Lynn Frank
Director of Operations
Paradigm-Omega, LLC

[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 233 bytes --]

Re: Dumb question

[David Cary Hart]

On Thu, 2004-08-26 at 20:48, Robin Lynn Frank wrote:
> Apologies if this is a dumb question but I am new to manipulating
> iptables directly.  There is a pest that has been routinely probing us. 
> While we simply drop them, I'd like to make it "uncomfortable" for them
> to continue.  When I attempt the following, I get the response
> indicated.  We are running Mandrake Linus 10.0 Official with a 2.6
> kernel.

I Frank.
> 
I use TARPIT. It is available in the latest POM which you can download.
You need the IPTables source code and the source for your kernel which
well then have to be recompiled. Make CERTAIN that you are not running
conntrack with TARPIT. 

> # /sbin/iptables -A INPUT -s ###.###.#.### -j TARPIT
> iptables: No chain/target/match by that name
> 
> Any help is appreciated.

Re: Dumb question

[Robin Lynn Frank]

[-- Attachment #1: Type: text/plain, Size: 390 bytes --]

On Thu, 2004-08-26 at 17:52, David Cary Hart wrote:
> > 
> I use TARPIT. It is available in the latest POM which you can download.
> You need the IPTables source code and the source for your kernel which
> well then have to be recompiled. Make CERTAIN that you are not running
> conntrack with TARPIT. 
> 
Thanks.
-- 
Robin Lynn Frank
Director of Operations
Paradigm-Omega, LLC

[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 233 bytes --]

Dumb question

[Facundo Barrera]

Hi list:
         I'm using iptables on slackware, everytime i update a rule on
my rc.firewall script i have to reboot my server....SO LAMMER!!!
how can i update my iptables rules without rebooting the OS?

Many thanks.

-- 
Facundo Agustin Barrera
IT Management.
Buenos Aires - Argentina.

Re: Dumb question

[Mike]

What does your rc.firewall script look like, and why would you need to
restart your server?

Are you not able to just execute /etc/rc.d/rc.firewall and have it
reload the firewall?

Thanks

Mike

Facundo Barrera wrote:
> Hi list:
>         I'm using iptables on slackware, everytime i update a rule on
> my rc.firewall script i have to reboot my server....SO LAMMER!!!
> how can i update my iptables rules without rebooting the OS?
> 
> Many thanks.
> 

Dumb question

[V Kurien]

Hi all
I'm trying to use ulogd2 to count flows and so I assume that I have to
create iptable rules to match the traffic that I care about.

Based on reading on the web, it seemed that I'd have to (this is on a
stock ubuntu-16.04 with a 4.4 kernel)

Assume that I want to match all TCP packets heading into the host;

(1) Create an iptables rule: iptables -A INPUT -p TCP  -j ULOG --ulog-nlgroup 1
(2) My ulogd.conf looks like:
.. all plugins included

stack=ct1:NFCT,ip2str1:IP2STR,print1:PRINTFLOW,emu1:LOGEMU

I get an error when I try to run the iptables command:

iptables: No chain/target/match by that name.

Clearly I am doing something insane, but what?

Re: Dumb question

[V Kurien]

Please ignore this. The kernel on the machine had been changed from
the generic kernel.

On Thu, Mar 9, 2017 at 8:35 PM, V Kurien <kurien.varugis@gmail.com> wrote:
> Hi all
> I'm trying to use ulogd2 to count flows and so I assume that I have to
> create iptable rules to match the traffic that I care about.
>
> Based on reading on the web, it seemed that I'd have to (this is on a
> stock ubuntu-16.04 with a 4.4 kernel)
>
> Assume that I want to match all TCP packets heading into the host;
>
> (1) Create an iptables rule: iptables -A INPUT -p TCP  -j ULOG --ulog-nlgroup 1
> (2) My ulogd.conf looks like:
> .. all plugins included
>
> stack=ct1:NFCT,ip2str1:IP2STR,print1:PRINTFLOW,emu1:LOGEMU
>
> I get an error when I try to run the iptables command:
>
> iptables: No chain/target/match by that name.
>
> Clearly I am doing something insane, but what?