Skip to main content
Server Fault

Unanswered Questions

Ask Question
2,000 questions with no upvoted or accepted answers
My Tags Newest Score No Answers
7 votes
0 answers
14k views

Squid transparent proxy for HTTPS / SSL trafic

I am trying to configure Squid as transparent proxy, I followed below steps to configure Downloaded Squid 3.5 from the website, As Squid 3.1 will not support for ssl bump ./configure --enable-linux-...
palacsint's user avatar
palacsint
  • 487
6 votes
0 answers
17k views

Linux ipv6 forwarding

Situation I know how to do ipv4 forwarding, and expected ipv6 forwarding to work pretty much the same way. So I configured a VirtualBox host with the network address configured from my ISP. Right now,...
Glorfindel's user avatar
Glorfindel
  • 1,213
6 votes
0 answers
4k views

Why is the first of two post-up commands for routing in interfaces configuration not automatically processed

We managed to connect our servers to two distinct networks and everything works fine. We use routing rules that ensure that server responds to the right network. I followed the instructions under ...
ChrisZZ's user avatar
ChrisZZ
  • 747
5 votes
0 answers
3k views

Ports exposed by docker container are shown as filtered - unable to connect

I am working on a fresh server installation of Ubuntu 20.04 I started a sample nginx by running docker run --rm -p 80:80 nginx Port 80 appears to be open on the machine, I cant curl the nginx default ...
clark's user avatar
clark
  • 1
5 votes
0 answers
902 views

How to route server_A's internet traffic through server_B using a GRE Tunnel?

I have two Linux servers. I want to use a GRE tunnel to route all internet traffic from ClientBox through a tunnel to GatewayBox, so that, to the rest of the internet, my ClientBox appears to be ...
Sepehr Kamangar's user avatar
Sepehr Kamangar
  • 1
5 votes
0 answers
3k views

Clarification regarding Deep Packet Inspection in the Linux Kernel's Netfilter section

The Linux Kernel provides Netfilter as a mechanism for both NAT and firewall functionality. Both of those functionalities require analysis and classification of incoming packets, which is dubbed "...
egthomas's user avatar
egthomas
  • 31
5 votes
1 answer
1k views

IPset Alternatives and Firewall Management

I have CentOS 7, Plesk 12, 8GB RAM VPS. I have around 1000 rules in my IPtables to block abusive users. But when reloading IPtables it takes 15 seconds to reload all 1000 rules. First of all, is it ...
user2743554's user avatar
user2743554
  • 425
5 votes
1 answer
4k views

Running snort behind iptables

I run a Centos 6.5 server with a highly restrictive iptables ruleset allowing incoming traffic only on a small handful of tcp ports (8 in total) and blocks all incoming unsolicited UDP traffic. I ...
Community's user avatar
CommunityBot
  • 1
5 votes
1 answer
7k views

strongswan VPN on OpenWrt

Hi I'm running Barrier Breaker version of OpenWRT and I have setup a VPN according to: http://wiki.openwrt.org/inbox/strongswan.howto I can connect to the VPN with my iPhone or Mac (to 10.10.1.0/24 ...
Community's user avatar
CommunityBot
  • 1
5 votes
1 answer
3k views

Possible for linux bridge to intercept traffic?

I have a linux machine setup as a bridge between a client and a server; brctl addbr0 brctl addif br0 eth1 brctl addif br0 eth2 ifconfig eth1 0.0.0.0 ifconfig eth2 0.0.0.0 ip link set br0 up I also ...
Community's user avatar
CommunityBot
  • 1
4 votes
0 answers
992 views

How to redirect tailscale to shadowsocks

How to redirect tailscale traffic (TPC+UDP) through shadowsocks proxy on Linux? I've tried ss-redirect with no success.
ehpc's user avatar
ehpc
  • 157
4 votes
0 answers
612 views

Using a Dockered Unbound DNS server as a resolver for other containers

I'm using Unbound DNS server as a resolver for my home LAN. It runs as a Docker container on the default bridge network and in general it works as I'd expect it to, except when trying to use it as a ...
zire's user avatar
zire
  • 43
4 votes
0 answers
354 views

Mitigating a DDoS attack on a TOR server

Running a political blog over TOR network with a .onion domain name I have been getting DDoS attack, I know how to mitigate an attack on clear net where the packets coming from normal IP addresses, ...
Salim Aljayousi's user avatar
Salim Aljayousi
  • 361
4 votes
1 answer
1k views

iptables u32 can match 4 bytes maximum?

I would like to match RDP packet with mstshash cookie with u32 iptable's ext. on Debian Jessie with Linux version 3.16.0-4-amd64 ([email protected]) (gcc version 4.8.4 (Debian 4.8.4-1) )...
zrm's user avatar
zrm
  • 636
4 votes
0 answers
637 views

Block incoming traffic in bonding mode when primary interface is down

My server running on latest kernel (4.4.6) has configured a bond device (bond0) with two enslaved interfaces eth0, wlan0 with primary interface eth0. cat /proc/net/bonding/bond0 Ethernet Channel ...
techfreakj's user avatar
techfreakj
  • 41

15 30 50 per page
1
2 3 4 5
134