Search results

  1. F

    FreeBSD 9 pftop null source

    Hi, I've got this strange output from my pftop which shows a null source and null destination with random of port as per attached Anyone got same issue ? Last time I've upgrade from 8.3-R to 9.0-R 9.0-RELEASE-p3 FreeBSD 9.0-RELEASE-p3 #0: Tue Jun 12 01:47:53 UTC 2012
  2. F

    9.0_RELEASE upgrade with RAID1

    Yes I've try to load the module but no luck, not so sure why.. -_-
  3. F

    9.0_RELEASE upgrade with RAID1

    I just encounter this kind of problem upgrading from 8.3-R to 9.0-R. The issue is 9.0-R can't seem to find partition on gm0. My step to solve and boot into the 9.0-R : - Using 9.0-R CD as live-cd to edit the ad0 fstab - from mirror/gm0 to /dev/ad0s1a - Reboot [ press 2 on options list, load...
  4. F

    how to block nmap scan ports?

    You can put your others server at DMZ zones to protect from sniffer/outsiders but not a concrete solution for your problem :) firewall is just a firewall with a limited services.
  5. F

    Ftp trap with pf

    have you set this in rc.conf ? ftpproxy_enable="YES"
  6. F

    SSH login to jail without public IP through master machine

    just an option create the user on your host that they can ssh, and put some code in .bash_profile to ssh again to your jails. I don't know if this is a good practice in term of security or else, but this what I do for my vps (xen) using shellinabox as the ssh tools :)
  7. F

    forward packets to jail with pf

    Good for you z662! :)
  8. F

    forward packets to jail with pf

    I got 3 jails web server running Apache, load balance by PF webserver="{192.168.1.2, 192.168.1.3, 192.168.1.4}" maybe you should use the IP :) or perhaps using rdr example : rdr pass on $ext_if proto tcp from any to any port ftp -> 127.0.0.1 port 8021
  9. F

    ICMP attack

    Agreed with DutchDaemon, I'm sure those IP are from DSL cable(home) which may be infected with virus and become a zombie. sysctl -w net.inet.icmp.icmplim=1
  10. F

    ICMP attack

    looks like it's a ping request 12:56:55.140332 IP 200.82.235.38 > 202.***.***.***: icmp 12:56:55.144389 IP 190.201.117.109 > 202.***.***.***: ICMP echo request, id 2, seq 65380, length 1480 12:56:55.148446 IP 190.201.117.109 > 202.***.***.***: icmp 12:56:55.152501 IP 190.199.166.58 >...
  11. F

    ICMP attack

    hi all, this is my current server that been attacked for almost 4 days : http://pastebin.com/m24ffec8c how to know what type of icmp packet is that ? thanks all
  12. F

    ezjail - host with Public IP

    Thanks vivek :)
  13. F

    Sometimes squid won't start after server restart

    I have the same problem, and I have to start it manually squid -D
  14. F

    ezjail - host with Public IP

    I found this article stated that I can use the 2nd NIC which not required to connect to LAN. let say I have bge0 for my ext_if and bge1 for my int_if bge1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=9b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM>...
  15. F

    ICMP attack

    nice all :) no much info I get from the provider, they just said our vps had been attacked by icmp packet. can we limit the ping reply ? I try to use max-src-conn but still failed to implement is it crazy if we redirect all bad icmp to other host like google ?
  16. F

    ICMP attack

    hi all :) One of my previous server(CentOS) suffering from icmp attack and currently I'm using freebsd 7.2 and blocking all icmp from outsiders (even the ping reply :) ) is there any prevention or rules that can protect a little bit for this kind of attack ? icmp blocking rules ...
  17. F

    pf - transparent

    so how do you solved it leonardo ? kindly share with us :)
  18. F

    pf - transparent

    how about your rc.conf ? should have : gateway_enable="YES"
  19. F

    ezjail - host with Public IP

    thanks denny :) If I set my interface (rl0) with public IP how about the rest of my jails ? I planning to put a private IP for my jails
  20. F

    ezjail - host with Public IP

    Hi all :) I already setup 3 webserver from ezjail in my local network with aliases address as per below : ifconfig_rl0="inet 192.168.1.106 netmask 255.255.255.0" ifconfig_rl0_alias0="inet 192.168.1.108 netmask 255.255.255.0" #httpd1 ifconfig_rl0_alias1="inet 192.168.1.109 netmask...
Back
Top