Author Topic: firewalling on zaurus? (Read 9755 times)

craigtyson · « **Reply #15 on:** April 08, 2005, 01:54:35 pm »

Yup Me Too

craigtyson · « **Reply #16 on:** April 19, 2005, 04:29:53 am »

Anyone know where to obtain the packages

cvmiller · « **Reply #17 on:** April 20, 2005, 09:53:13 am »

Quote

403 permissions error on that link
[div align=\"right\"][a href=\"index.php?act=findpost&pid=73626\"][{POST_SNAPBACK}][/a][/div]

Sorry about that, I was on vacation. Just got back, and have changed the permissions.

Should work now.

Craig...

craigtyson · « **Reply #18 on:** April 20, 2005, 10:22:01 am »

Cheers Can access now. Will play when I get home.

ZDevil · « **Reply #19 on:** April 28, 2005, 11:48:43 am »

After quite some time of googling, I finally found the original site with a new address. You can find all the necessary packages here.

http://home.mchsi.com/~cmisip/zaurus.htm#SHW

It is one of my most favourite sites for Z!

Meanie · « **Reply #20 on:** May 20, 2005, 09:49:23 am »

Quote

After quite some time of googling, I finally found the original site with a new address. You can find all the necessary packages here.

http://home.mchsi.com/~cmisip/zaurus.htm#SHW

It is one of my most favourite sites for Z!
[div align=\"right\"][a href=\"index.php?act=findpost&pid=77379\"][{POST_SNAPBACK}][/a][/div]

I had to repackage shorewall to make it work on the C3000 and also had to build an iptables package with the 2.4.20 kernel files but it all seems to be working now. Have to do a bit more testing. If anyone is interested, it's on my website.

ZDevil · « **Reply #21 on:** May 20, 2005, 10:15:38 am »

That's great! Thanks, Meanie and the wealth of info in your website.

BTW, I got a problem with Shorewall long ago, but seems it was just ignored...

https://www.oesf.org/forums/index.php?showtopic=12253&hl=

Any idea would be greatly appreciated. Thanks!

ZDevil

speculatrix · « **Reply #22 on:** May 24, 2005, 06:48:39 pm »

Here's my trivial firewall script on the Z:

iptables -F INPUT
iptables -P INPUT DROP
iptables -I INPUT -m state --state established,related -j ACCEPT

basically, it uses connection tracking to only allow connections which were created by outbound traffic.

tfraser · « **Reply #23 on:** July 11, 2005, 09:30:57 am »

I just generated an .ipk for the "Snowfence" iptables-based firewall I use on my Zaurus SL-6000. It's quite small and simple, and should work on other Zaurus versions and ROMS as well. Please see

http://alum.wpi.edu/~tfraser/Software/Snowfence

Version 1.1 contains rules similar to those posted by speculatrix in this thread nearly a year ago, with the exception that it allows bidirectional traffic on the USB interface so you can use the cradle as you normally would. In addition, the .ipk sets up the traditional /etc/rc.d files so the firewall will start and stop properly on reboots. There's no configuration to fool with; just install the ipks and that's it.

I have also mirrored the .ipk's for iptables and iptables-modules posted earlier by Jcroto1, to help keep them available on the Net.

News:

Author Topic: firewalling on zaurus? (Read 9755 times)