3

IPFW settings to allow trusted client to connect to Mac (e.g., over ssh)

view full story
linux-howto

http://serverfault.com – I have the following ipfw settings on my Mac OS X 10.4 Tiger: 00100 allow ip from any to 123.123.123.123 00110 allow tcp from any to 123.123.123.123 00120 allow udp from any to 123.123.123.123 00130 allow ip from 123.123.123.123 to any 00140 allow tcp from 123.123.123.123 to any 00150 allow udp from 123.123.123.123 to any 65534 deny ip from any to any 65535 allow ip from any to any I am trying to ssh to the Mac from a Linux computer which has IP address 123.123.123.123, and sshd is running on the Mac. However, the ssh client outputs the following: ssh myuser@mac.example.com -v OpenSSH_5.5 (HowTos)

dayu's picture
Submitted by dayu on 02/24/2012 – Made popular on 02/24/2012

Stories similar to IPFW settings to allow trusted client to connect to Mac (e.g., over ssh)

I am using ipfw nat with the following config

ipfw -q nat 1 config if em0

Which TCP and UDP ranges will the NAT choose its alias ports from?

I set this lines in my rc.conf:

firewall_enable="YES" firewall_type="/etc/ipfw.rules"

cat /etc/ipfw.rules

add 02020 deny ip from table(10) to any add 02030 deny ip from table(11) to any dst-port 25

...

But after reboot, ipfw show :

00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 00300 deny ip from 127.0.0.0/8 to any 00400 deny ip from any to ::1

Hi all,

I am working on a shell script that blocks all incoming and outgoing connections for 10 hours. After then hours everything will be unblocked again.

i am using the ipfw command and put it to sleep the amount of time in seconds.

Code: ipfw -q flush ipfw -f add deny tcp from any to any any keep-state setup sleep 36000 ipfw -q flush this works so far, so good.

I need to hack the OS X pf to redirect all ssh connections from an user to this machine.

Server freeze on flushing ipfw 44 weeks 2 days ago

I got strange problem with ipfw on FreeBSD 8.2, the problem is when I'm trying to flush the ipfw , by the following command:

/sbin/ipfw -q -f flush

or

/sbin/ipfw flush and then y

My dedicated server freezes, and ISP need to hard reboot it.

Could anyone help me?

IPFW Port Forwarding 13 weeks 4 days ago

This is my situation: I want to connect to an OpenVPN server from my office (we're using a proxy, only ports 80 and 443 are allowed).

Server IP address is: 176.31.250.232:843

My static IP address is: 192.168.78.241

Is possibile to forward the 843 TCP port to the 443 port using IPFW? (I'm on OSX).

Thanks for the answers.

hello,

I have a ubuntu 12.04 (Linux SAMBA 3.2.0-29-generic # 46-Ubuntu SMP Fri Jul 27 5:03:23 p.m. UTC 2012 x86_64 x86_64 x86_64 GNU / Linux). I installed samba, I have shared common is accessible.

I'm trying to do the equivalent of:

$ sudo -u myuser DISPLAY=:1 xterm

However, it give me the following error

Client is not authorized to connect to Server

On the other hand, I can do this just fine:

$ sudo -u -i myuser $ DISPLAY=:1 xterm

Why isn't the X server allowing me to launch an X11-based app directly as a different user, and is there any way I can explicitly allow this?

Cron job doesn't seem to work 20 weeks 5 days ago

I scheduled a task every 5 minutes in my crontab.

The task is well-scheduled by activating the cron log in rsyslog and checked that it executes as planned:

- Right user - Right command

Sample:

Dec 23 06:40:01 computer /USR/SBIN/CRON[26422]: (myuser) CMD (bash /home/myuser/myscript.sh &>/home/myuser/myscript.log)

I even tried:

Dec 23 06:40:01 computer /USR/SBIN/CRON[26422]: (myuser)