FacebookTwitter

PF Firewalling small tip

By on Nov 20, 2004 in Internet, Networking, Software and Tools | 0 comments

I was trying to block HTTP access of one of my users, I have a SQUID Cache server/Gateway in my network bottleneck and I just use one of Ethernet ports of that server just for catching HTTP connections and cache contents, I also installed a PF as Firewall. As you may know with PF is very easy to block any kind of access inbound or outbound, I used following command to not to let my user be able to initiate HTTP requests by editting /etc/pf.conf: block in on bge0 proto tcp from 10.0.0.1 to any port 80 But I experienced a strange thing, the client was able to use HTTP, I also checked my SQIUID, all user queries were passing through SQUID proxy, the reason was because PF redirects packets before any kind of filtering! IMPORTANT: PF redirects packets before any kind of filtering So then, I edited /etc/pf.conf like this: table { 10.0.0.0/8, !10.0.0.1 } . . . rdr on bge0 proto tcp from to...

Multiple Websites on a single Host

By on Oct 5, 2004 in Internet, Networking, Software and Tools | 0 comments

Have you ever stopped how shared Hosting service providers put multiple websites with different domain names on a single host and single IP? They usually call it shared webhosting in contrast with dedicated servers, if you are curious to find out how it works read this PDF. Multiple Websites on a sigle Host Later, I will add some documents about Tomcat and Apache Webserver, though the concept is the same.

Web Hosting and Domain Registration

By on Oct 5, 2004 in Internet | 0 comments

Today I started my new business, now I am representative and reseller of a WebHosting company, I can offer you best prices, so send me an e-mail for details, be sure that you will find it cheaper than the other companies! Try it! The Datacenter is based in Canada and Domains will be registered on tucows!

BLOCKING SPAM GENERATORS IP ADDRESSES ON QMAIL MTA

By on Sep 15, 2004 in Internet, Networking, Software and Tools | 0 comments

Well, today I studied some new points about blocking spams, lots of ways, I chosed one, I don’t know how effecient is it. I added some spice to my mail server. Let’s see how…. There are lots of websites providing different types of databases to let your spam blockers how to distinguish between spams and good e-mails, Some ways are like DNS Lookups for bogus IP addresses, using dummy SMTP servers, using deferral SMTP daemons, firewalling and blocking bogus spam senders, They way I have chosen today was blocking IP addresses from TCPSERVER which handles my mail server services, the TCPSERVER provide TCP connectivity for any TCP based service, I should tell you that my mail server is installed on FreeBSD, so all given information is based on that OS. those guys who installed qmail with Life With Qmail direction they remember that if they want to give access of connecting...

New day! New problem!

By on Sep 9, 2004 in Experiences, Internet, Networking | 0 comments

Actually there was no problem today; I just finalized my other plan in order to provide a better service for the company customers. In our network we provide two major services, first, dial-up internet access, second, POP3 e-mail. Currently, users from outside can connect to our dial-up lines which are low quality analogue PSTN lines; we already have internet access on new digital E1 lines but e-mail users still using the old service. It’s been long time that I have this idea in my mind to move them all using new digital lines instead of those old lines. I had a design, today I made it. Yesterday, I installed my last Firewall/Webcache which prepared with FreeBSD, pf Firewall and SQUID web cache and I decided to use them to let our e-mail users to login to the same network access server without having access to internet, I needed a private IP range to assign it to mail users so...

SQUID CACHE INSTALLATION

By on Sep 7, 2004 in Internet, Networking, Software and Tools | 0 comments

Nowadays, you can see too much of internet resources are consumed by useless garbage like spams, virus traffics, circular forwarded useless e-mails and many other stuff…. Its administrator’s job to decrease internet traffic with using power of accelerators, caches, antispams and software’s like that…. Today I installed new web-cache server, the most famous one SQUID. About a year ago I installed one on OpenBSD with a Compaq proliat, but the server was not so powerful to handle all demands as fast as you can feel it. The company bought Two Compaq G3 servers, I installed one as corporate mail server using Qmail on FreeBSD, the last one that I was working on today, I used it as Network Gateway and Firewall, I’m sure it can handle all demands, so I’m not worry about that. The reason I’m writing this is to tell you some directions to make your own cache server,...

Page 3 of 3123

Pin It on Pinterest