how do I check that rc.firewall is runningForum: System Topic: how do I check that rc.firewall is running started by: TWILIGHT32 Posted by TWILIGHT32 on Mar. 01 2008,13:56
another newbie question. I have installed rc.firewall and started it. however ps -A doesn't show me it is running. is there any way I can check it is really running ? thanks Posted by lucky13 on Mar. 01 2008,14:08
Which version of DSL are you running? That extension is for the 2.4.26 kernel, not 2.4.31. If you started it with the correct kernel version, it's running. You can stop it from console and restart and it should show your IP, etc.
If you're running kernel 2.4.31, I think you will get some errors for iptable mismatch because it's going to look for them in /lib/modules/2.4.26. Posted by skaos on Mar. 01 2008,15:53
I don't think the firewall is a separate process, it is part of the kernel. You can use this command to list the rules:iptables -L Posted by TWILIGHT32 on Mar. 02 2008,15:54
Hello skaos,thanks for your reply. this is what I get when I run the iptables -L command, however I don't know how to interpret this. does that look ok to you? thanks ***************************************************************** with DSL userid:------------------ dsl@box:~$ iptables -L Note: /etc/modules.conf is more recent than /lib/modules/2.4.31/modules.dep iptables v1.2.6a: can't initialize iptables table `filter': Permission denied (you must be root) Perhaps iptables or your kernel needs to be upgraded. using sudo -------------------- dsl@box:~$ sudo iptables -L Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere state NEW TRUSTED all -- anywhere anywhere state NEW Chain FORWARD (policy DROP) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination DROP icmp -- anywhere anywhere state INVALID Chain TRUSTED (1 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp echo-request DROP icmp -- anywhere anywhere Posted by TWILIGHT32 on Mar. 02 2008,16:00
Hi Lucky13thanks for your reply. attached below is what I get when I stop and start the firewall using the commands you sent. I get the same message when I start the rc.firewall from mydsl menu. it still doesn't show anything under ps -A . Unless as Skaos suggested the rc.firewall is part of the kernel. can anyone confirm that ? thanks ============================================= dsl@box:~$ sudo /etc/init.d/rc.firewall stop -> Projectfiles.com Linux Firewall version 2.0rc9 running. -> Performing sanity checks. [ PASSED ] -> Firewall disabled. dsl@box:~$ sudo /etc/init.d/rc.firewall start -> Projectfiles.com Linux Firewall version 2.0rc9 running. -> Performing sanity checks...... [ PASSED ] -> Building firewall.... [ DONE ] -> Successfully secured the following addresses: Posted by TWILIGHT32 on Mar. 02 2008,16:04
Hi Lucky13forgot to mention i have kernel 2.4.31 Posted by chaostic on Mar. 02 2008,16:08
Twilight, from those two posts, rc.firewall is up and running.
|