prowebuk

Forum Replies Created

Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
    Posts
  • in reply to: vpn – firewall rules question #48668
    prowebuk
    Participant

    Just to update the thread as PPTP is include in 3.0.0, if your default FORWARD policy is DROP, you may need to add inbound and outbound PPP rules.

    As per the previous post, in your FORWARD chain, create two new rules (you can use “+” as a wild card rather than specifying each of the ppp interfaces)

    Create a new ACCEPT rule, select routed packets only and set IPTABLES Parameters: -i ppp+
    Create a second ACCEPT rule, select routed packets only and set IPTABLES Parameters: -o ppp+

    * * ACCEPT all opt — in ppp+ out * 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match ! –physdev-is-bridged
    * * ACCEPT all opt — in * out ppp+ 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match ! –physdev-is-bridged

    Works a treat.

    in reply to: ZS 1.0b10 & 1.0b11 DMA Read Error #46674
    prowebuk
    Participant

    Hi Flavio,

    Still having a problem on HP dl360 g3’s, happy to pay for support as I can’t progress beyond 1.0b9 without changing my hardware 🙁

    Cheers

    Richard

    in reply to: Debugging traffic on the default QOS rule #46193
    prowebuk
    Participant

    Hi G,

    I’ve updated the real time graph to show the max rate over the last 24 hours against each rule name which saves clicking on each rule to check the historical graph, it’s in the zip if you want to grab a new copy.

    Cheers

    R

    in reply to: Debugging traffic on the default QOS rule #46191
    prowebuk
    Participant

    It would appear after further testing that the QOS rules are processed in reverse order eg.

    1 * * MARK all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 MARK set 0xc LOCAL

    does not take precidence over:

    26 * * MARK tcp opt — in * out * 86.17.6.20 -> 0.0.0.0/0 PHYSDEV match –physdev-is-bridged tcp spt:110 MARK set 0x21 PW_POP
    27 * * MARK tcp opt — in * out * 0.0.0.0/0 -> 86.17.6.20 PHYSDEV match –physdev-is-bridged tcp dpt:110 MARK set 0x21 PW_POP

    in reply to: ssh added user #46172
    prowebuk
    Participant

    Hi Belda,

    My guide to setting up SSH using an rsa key may be of some use:

    http://www.proweb.net/zeroshell_stats_logging_howto.php

    Cheers

    Richard

    in reply to: Debugging traffic on the default QOS rule #46190
    prowebuk
    Participant

    Hi G

    Here you go then:

    http://www.proweb.net/zeroshell_stats_logging_howto.php

    Be my guest, it’s a little rough around the edges but works for me. Let me know how you get on with it and please feed back any improvements.

    Cheers

    Rich

Viewing 6 posts - 1 through 6 (of 6 total)