Allow TFTP traffic Through IPCOP Firewall

-
It is weired that IPCOP block the tftp traffic from external server to internal. In order to work properly we have to add rule manually in the /etc/rc.d/

imran@imran-laptop:~$ ssh root@192.168.0.1 -p 222
root@10.47.0.1's password:
Last login: Mon Jun 8 16:21:12 2009 from imran-laptop.owera.com
root@firewall:~ # nano /etc/rc.d/rc.network


## add following for TFTP traffic

modprobe ip_conntrack_tftp
modprobe ip_nat_tftp



Reboot the Firewall to take effect or enter the above command in command line.

Further Info:

http://keystoneit.wordpress.com/2007/11/25/tftp-through-ipcop-or-other-iptables-firewalls/

Comments

Post a Comment

Popular posts from this blog

PPPoE Server Under Ubuntu/Debian

-
PPPoE Server Setup: Operating System: Ubuntu Desktop(8.04) 1) Installation of Softwares: Server Side a) ppp apt-get install ppp b) pppoe apt-get install pppoe c) rp-pppoe (I used rp-pppoe-3.10.tar.gz) RP PPPoE; can be obtained from, http://www.roaringpenguin.com/products/pppoe After download Move it to some place e.g /var/tmp, unpack and change permission root@pppoe:/var/tmp# mv /home/imran/Desktop/rp-pppoe-3.10.tar.gz /var/tmp/ root@pppoe:/var/tmp# tar -xvf rp-pppoe-3.10.tar.gz root@pppoe:/var/tmp# chown imran:imran rp-pppoe-3.10 root@pppoe:/var/tmp# ls -l total 220 drwxr-xr-x 8 imran imran 4096 2008-06-30 16:00 rp-pppoe-3.10 -rw-r--r-- 1 imran imran 215288 2009-10-19 10:31 rp-pppoe-3.10.tar.gz root@pppoe:/var/tmp# Open README file and go through it.There are 3 methods I shall go for first one, QuickStart method. QUICKSTART Method : "If you're lucky, the "quickstart" method will work. After unpackingthe archive, become root and type" root@pppoe:/var/tmp# cd...
Read more

Intrusion Detection and Prevention Using OSSEC

-
What is OSSEC? According to OSSEC "It is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response." Installation on Debian Server I installed on Debian .6.24-19-server, already running web service. Install environment Make sure you have compiler e.g gcc or cc and 'make' already installed in your system, otherwise you will get error message and abort the installation process. root@www:/usr/local/src/ossec-hids-2.4.1# apt-get install gcc Dwonload the latest build from www.ossec.net website Extract into folder and start installation imran@web:~/ossec-hids-2.4.1$ tar -zxvf ossec-hids-2.4.1.tar.gz imran@web:~/ossec-hids-2.4.1$ cd ossec-hids-2.4.1/ Run the installation script; root@web:~/ossec-hids-2.4.1# ./install.sh ** Para instalação em português, escolha [br]. ** 要使用中文进行安装, 请选择 [cn]. ** Fur eine deutsche Installation wohlen Sie [de]. ** Για ε...
Read more

Installation of GNS3 on Windows

-
Installation of GNS3 on Windows (7) It is better if you have already install loopbak interface on your machine. VMware Workstation: Download from vmware site. Loopback interface : Installation of  loopback interface on windows 7 GNS3 : Download  GNS3: GNS3 v08.2 all-in-on, this will intstall all necessary tools and packages. Cisco router IOS images: Download   IOS-images   from this location Cisco ASA firewall IOS and ASDM : Download  ASA_IOS  and ASDM-645-204 TFTP server:   Download  and run the setup to install.
Read more