Re: Desinstalar o redirigir la salida de iptables
El vie, 16-01-2004 a las 06:21, pinchatrenes escribió:
> Hola si aquí tienes /etc/init.d/networking:
> ......................................................................
> #!/bin/sh
> #
> # manage network interfaces and configure some networking options
>
> PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
>
> if ! [ -x /sbin/ifup ]; then
> exit 0
> fi
>
> spoofprotect_rp_filter () {
> # This is the best method: turn on Source Address Verification and
> get
> # spoof protection on all current and future interfaces.
>
> if [ -e /proc/sys/net/ipv4/conf/all/rp_filter ]; then
> for f in /proc/sys/net/ipv4/conf/*/rp_filter; do
> echo 1 > $f
> done
> return 0
> else
> return 1
> fi
> }
>
> spoofprotect () {
> echo -n "Setting up IP spoofing protection: "
> if spoofprotect_rp_filter; then
> echo "rp_filter."
> else
> echo "FAILED."
> fi
> }
>
> ip_forward () {
> if [ -e /proc/sys/net/ipv4/ip_forward ]; then
> echo -n "Enabling packet forwarding..."
> echo 1 > /proc/sys/net/ipv4/ip_forward
> echo "done."
> fi
> }
>
> syncookies () {
> if [ -e /proc/sys/net/ipv4/tcp_syncookies ]; then
> echo -n "Enabling TCP/IP SYN cookies..."
> echo 1 > /proc/sys/net/ipv4/tcp_syncookies
> echo "done."
> fi
> }
>
> doopt () {
> optname=$1
> default=$2
> opt=`grep "^$optname=" /etc/network/options`
> if [ -z "$opt" ]; then
> opt="$optname=$default"
> fi
> optval=${opt#$optname=}
> if [ "$optval" = "yes" ]; then
> eval $optname
> fi
> }
>
> case "$1" in
> start)
> doopt spoofprotect yes
> doopt syncookies no
> doopt ip_forward no
>
> echo -n "Configuring network interfaces..."
> ifup -a
> echo "done."
> ;;
> stop)
> if sed -n 's/^[^ ]* \([^ ]*\) \([^ ]*\) .*$/\1 \2/p' /proc/
> mounts |
> grep -q "^/ nfs$"; then
> echo "NOT deconfiguring network interfaces: / is an NFS
> mount"
> elif sed -n 's/^[^ ]* \([^ ]*\) \([^ ]*\) .*$/\1 \2/p' /proc/
> mounts |
> grep -q "^/ smbfs$"; then
> echo "NOT deconfiguring network interfaces: / is an SMB
> mount"
> elif sed -n 's/^[^ ]* \([^ ]*\) \([^ ]*\) .*$/\2/p' /proc/mounts |
> grep -qE '^(nfs|smbfs|ncp|coda)$'; then
> echo "NOT deconfiguring network interfaces: network shares
> still mounted."
> else
> echo -n "Deconfiguring network interfaces..."
> ifdown -a
> echo "done."
> fi
> ;;
> force-reload|restart)
> echo -n "Reconfiguring network interfaces..."
> ifdown -a
> ifup -a
> echo "done."
> ;;
> *)
> echo "Usage: /etc/init.d/networking {start|stop|restart|force-reload}"
> exit 1
> ;;
> esac
>
> exit 0
> .......................................................................
>
> Me gustaría devolverlo a su status original.
>
> Gracias un saludo.
>
Yo no veo nada que llame a iptables, esta sin modificaciones
Tendrias que investigar donde guarda las reglas firestarter para asi
poder modificar las que estan logueando
--
Angel Claudio Alvarez
> --
> pinchatrenes
> Powered by Debian/GNU Linux 'sarge'
> mailto: mis_listas at ono dot com
>
Reply to: