Forum Replies Created
December 9, 2017 at 10:45 pm in reply to: Cannot connect – Lost my router – Need help – Emergency #54643
I found how to do this. Thank you.December 9, 2017 at 10:25 pm in reply to: Cannot connect – Lost my router – Need help – Emergency #54642
I will check it, thank you.
Do you know where can I change the firewall when I connect through serial or vga interface? I will not have web if I connect like that.
Did you find the solution for this problem? I want to do the same.May 31, 2017 at 4:54 pm in reply to: Cannot install "Newer Advanced Kernel (32/64 bits) 4.9. #54469
Maybe you are right, but “why not?” It will not hurt.May 30, 2017 at 3:16 pm in reply to: Cannot install "Newer Advanced Kernel (32/64 bits) 4.9. #54467
It worked, thank you.
Did you find out how to do it? Is it possible to do?
Were you able to build repeater with ZeroShell? Looking for some tips. Anything?
I use 64-bit image.
Thank you for your reply.
Device that I use has two NICs and multiple USB slots. It does not have PCI or PCI Express slots. I need the third NIC, so the only option for me is USB NIC and I cannot make it work as 1Gb card.
I do not think so. Default ACCEPT means to allow all traffic and I would not leave it like this.
Not sure why it is done ACCEPT, maybe because it is not necessarily works as a firewall too. All those modules are options, but, if you want to use them, you have to start modifications.
This how I think about this, but I could be wrong.
Why would you want to be ACCEPT? It is always more secure to use DROP.
Try create Firewall rule where you specify Input as ETH00 and output as ETH01 at the same time. Also, create rule and specify Input as ETH01 and output as ETH00 at the same time.
I did not try it, but I think it should work.
I understand it and I agree that this is how it should be, but…..
When I run firewall test from ShieldsUP, it detected that I had port 80 opened. I tested and the port was opened, but there are no rules for anything with port 80.
After I added that DROP rule, everything is closed now.
This was the reason for that rule.
Thank you for the suggestion, but what about rule number 6? If I understand correctly, the system reads rules from the top to bottom. If I set it up like this:
1 ETH01 * DROP all opt — in ETH01 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
2 ETH01 * ACCEPT all opt — in ETH01 out * 184.108.40.206 -> 0.0.0.0/0 yes
I think it will never reach the second rule. Am I correct?
Maybe I have to use that Accept rule as number one and Drop as number two?
Installing newer client fixed all my problems with VPN.
Thank you very much for your help.