@mkeIT
CentOS7/RHEL7/Oracle EL7 uses firewall-cmd
e.g.
#to get your current zones
firewall-cmd --get-default-zone
add rule
firewall-cmd --add-service=http
firewall-cmd --zone=public --add-port=9300/tcp
add to be become persistent rule
--permanent
e.g.
firewall-cmd --permanent --add-service=http
firewall-cmd --permanent --zone=public --add-port=9300/tcp
Forum Topic
TPC Linux Thread | Queries | Answers | Whatnot
-
@hajji
Salamat sir.
Yes gumamit ako ng mga cmds ni firewalld na add ko lahat ng need ng ports ni Zimbra 8.6. successfull installation ko and running all services,
Kaso di ako maka connect sa web admin https//<i.p.>:7071
open and listening naman as per netstat at nmap
Dinisable ko na muna si firewalld. but i know it is a good idea/best practice kahit testing lang ito. -
mga master sa mga naghahanap ng bagong work meron opening sa HP.
HP Philippines walk-in interview event for Senior Unix System Administrators
more details
https://www.facebook.com/events/1019353858083478/ -
Salamat sa mga tumulong sa pag hahanap ng UTM appliance. :)
Pa help po mga sirs, nag aaral ako mag config ng mail server using postfix + dovecot sa centos7, since yan ang next project ko sa company.
Gamit kong domain is free domain lang muna for testing purpose from cu.cc. Nakaka receive na ako ng emails from both internal and external domains. Problem is yung sending ko hanggang internal lang, pag other domains such as gmail ayaw makarating pero sa mail client nag sesent sya.
Ito error ko sa maillog.
mail postfix/smtp[3156]: connect to gmail-smtp-in.l.google.com[74.125.130.26]:25: Connection timed out
mail postfix/smtp[3156]: connect to gmail-smtp-in.l.google.com[2404:6800:4003:c01::1a]:25: Network is unreachable
mail postfix/smtp[3156]: connect to alt1.gmail-smtp-in.l.google.com[2404:6800:4008:c01::1b]:25: Network is unreachable
mail postfix/smtp[3156]: connect to alt1.gmail-smtp-in.l.google.com[173.194.72.26]:25: Connection timed out
mail postfix/smtp[3156]: connect to alt2.gmail-smtp-in.l.google.com[2607:f8b0:400e:c03::1b]:25: Network is unreachable
mail postfix/smtp[3156]: 9B9B72025353: to=<[email protected]>, relay=none, delay=61, delays=0.02/0.01/61/0, dsn=4.4.1, status=deferred (connect to alt2.gmail-smtp-in.l.google.com[2607:f8b0:400e:c03::1b]:25: Network is unreachable)
Napiping ko yung mga ip addresses na nandyan, pero pag nag telnet ako ng port 25 ayaw din mag connect.
Salamat. ng marami -
mga master mron akong PC, gusto ko sanang gawing 2 user for 1 PC. i am currently using lubuntu.
Procie: AMD A6
Ram: 4gb
HDD: 750g
Bka mron nakakaalam ng thread or site.
thanks -
http://tldp.org/HOWTO/XFree-Local-multi-user-HOWTO/
-
takeaway is you need multiple graphics card, 1 per user, setup X for each graphics card, and assign exclusive inputs (keyboard/mouse) to each X session, viola.
-
Mga gurus, ask lang po kung may logs or command po ba na ma viview yung disk space sa specific date? e.g. I want to see the available disk space last friday July 24, 2015?.. Thanks Mastersss
-
You need to install some monitoring software which tracks disk usage and put it in a database, like nagios, tivoli or nms - or you can roll out a diy using cron and df
-
naka interested kayo. nakita ko lang:
Security Auditing and Penetration Testing with Kali Linux
<click here for link> -
Tentative Linux SysAd training this coming September 2015 Stay tuned for further anouncement
-- edited by hajji on Aug 11 2015, 09:08 AM - Post deleted #11471943
-
community service announcement lang po mga kapatid:
me mga openings sa company namin dito sa SG:
DBA - MySQL/Postgresql
kung interested kayo, or meron kayo kakilala, pm me for the JD
maraming salamat!!
-- edited by wtsd on Aug 18 2015, 03:11 PM -
Good pm mga sr? baka meron po kayong alam na tool or utility sa centos na pang monitor bandwidth consumption per terminal with date and time per
local IP? prang PRTG traffic Grapher po okey po sana ung iftop at iptraf kaso ang gusto po sana yung pweding marecord.. TIA! :) -
^^
any tool that makes use of snmp will do :) -
okey na po tnx ^_^
-- edited by TyRHoN15 on Oct 01 2015, 06:01 PM -
hi mga master. nag iinstall ako ng mga rpms at ang ginamit kong command "rpm -Uvh *rpm" pero may mga failed dependencies, ito yung sample nung isa "libblkid = 2.17.2-12.9.el6 is needed by (installed) util-linux-ng-2.17.2-12.9.el6.x86_64". ano bang tamang gawin? may nabasa ako sa net na "--nodeps" pero di ko alam kung may side effect. thanks! :)
-
Help po sa squid proxy server on CentOS7
hindi ko ma block yung twitter.com mapa http or https ano kaya possible reason?
commands:
cp squid.conf squid.conf.org
vi squid.conf
acl squid-server src 192.168.80.0/24
INSERT YOUR OWN RULES HERE TO ALLOW ACCESS FROM YOUR CLIENTS
acl blocked_sites url_regex "/opt/blocked.txt"
http_access deny blocked_sites
http_access allow squid-server
http_port 3128
systemctl restart squid
systemctl status squid #active running
firewall-cmd --add-port=3128/tcp
vi /opt/blocked.txt
#ListOfBlockedSites
.youtube. #already blocked
.facebook. #already blocked
.tumblr. #already blocked
.instagram. #already blocked
.twitter. #still can access http and https
Thank you!
-- edited by monsterbaker on Nov 11 2015, 02:16 PM
-- edited by monsterbaker on Nov 11 2015, 02:19 PM -
^ bat ayaw mo sa iptables na lang iblock yan?
like this
iptables -A INPUT -s www.facebook.com -j DROP or REJECT
iptables -A OUTPUT -d www.facebook.com -j DROP or REJECT
or
iptables -A INPUT -p tcp -m tcp -d www.facebook.com -j DROP or REJECT
Kung naka transparent mode ka di mo maba-block mga nasa port 443
Kase kung makulit akong user lagay ko lang sa browser ko eh https://www.facebook.com eh tatagos ako
pero
Kung naka stand alone proxy ka at i-set mo yan sa per pc gagana yan kahit ganito lang gagana yan eh
acl onlineCHISMOSA dstdomain .facebook.com
http_reply_access deny onlineCHISMOSA
http_access deny CONNECT onlineCHISMOSA
Eto baka makatulong sayo tambayan ko yan dati:
http://wiki.squid-cache.org/ConfigExamples
-- edited by clerrific on Nov 11 2015, 05:12 PM -
acl onlineCHISMOSA dstdomain .facebook.com
http_reply_access deny onlineCHISMOSA
http_access deny CONNECT onlineCHISMOSA
gumana ito sir. maraming salamat! pwede ba yung specific web filtering sa squid? like block all adware parang the same way sa UTM. Thanks -
^uu
ganyan setup ko dati eh. Di ko need nang mga linux distro like untangle or alike kung pagbabasehan eh web content filtering
ganito:
acl blockfiles urlpath_regex "/etc/squid/blockmoto"
http_access deny blockfiles
where /etc/squid/"filename" location nang listahan mo
sa loob ng file na blockmoto lagay mo na mga gusto mo iblock
\.[Ee][Xx][Ee]$
\.[Aa][Vv][Ii]$
\.[Mm][Pp][Gg]$
\.[Mm][Pp][Ee][Gg]$
\.[Mm][Pp]3$
kung gusto mo makita yung lahat ng web contents search mo lang kay pareng google tulad ng ganito:
http://www.freeformatter.com/mime-types-list.html
tapos dagdag mo lang sa listahan mo yung gusto mong i-block
sabe ko nga sayo makakatulong sayo yung tambayan ko na http://wiki.squid-cache.org
bigyan mo lang nang oras.
Kahit ako eh binigyan oras ko yan kaya nahasa akong gumamit ng squid. -
^uu
ganyan setup ko dati eh. Di ko need nang mga linux distro like untangle or alike kung pagbabasehan eh web content filtering
ganito:
acl blockfiles urlpath_regex "/etc/squid/blockmoto"
http_access deny blockfiles
where /etc/squid/"filename" location nang listahan mo
sa loob ng file na blockmoto lagay mo na mga gusto mo iblock
\.[Ee][Xx][Ee]$
\.[Aa][Vv][Ii]$
\.[Mm][Pp][Gg]$
\.[Mm][Pp][Ee][Gg]$
\.[Mm][Pp]3$
kung gusto mo makita yung lahat ng web contents search mo lang kay pareng google tulad ng ganito:
http://www.freeformatter.com/mime-types-list.html
tapos dagdag mo lang sa listahan mo yung gusto mong i-block
sabe ko nga sayo makakatulong sayo yung tambayan ko na http://wiki.squid-cache.org
bigyan mo lang nang oras.
Kahit ako eh binigyan oras ko yan kaya nahasa akong gumamit ng squid.
noted sir maraming salamat dito. :) -
sir sa latest version ba ng squid may kakayahan sa video cache balak ko kasi lumipat ng linux - squid galing ako ng pfsense lusca
-
^ matagal nang may video cache si squid you just need to understand the behavior of the dynamic site with video that you will be caching.
I hope this will help you
<click here for link>
Just as I said from my last post here just give it a time and you'll earn it. If you don't understand the behavior of squid don't force yourself to achieve it but to understand the squid daemon.
Oh by the way lusca is a dead fork project from squid.
-- edited by clerrific on Nov 17 2015, 07:52 AM -
Thank you sir balik squid nalang ulit ako aral mode ulit
-
sir sa latest version ba ng squid may kakayahan sa video cache balak ko kasi lumipat ng linux - squid galing ako ng pfsense lusca
Kamusta yung performance ni pfsense? marami bang bugs kaya ka balik squid? thanks -
hi mga sir, newbie palang po ako sa linux may questions lang sana ako regarding sa cacti. been searching for hours pero wala ako makitang maayos na results eh.
bale na install ko na po yung cacti sa isang server( server 1 centos 6.5), ang problem is tinatry ko imonitor si server 2 (centos 6.5 rin) pero di ko alam kung tama ang ginagawa ko. o kung paano ang gagawin ko.
tinry ko mag follow ng instructions ilang beses na sa net, kaso snmp error lagi ako kaya di ako maka abante.
hope you can help me thanks po!
edit:
1. tinry ko sa localhost gumagana na yung mga graph.
2. yung ip ba ni server 1 dapat ilagay ko sa snmpd.conf ni server 2?
-- edited by chengky on Nov 26 2015, 01:21 PM -
mga sir, im currently evaluating sophos utm, just downloaded it and install. nagawa ko na ang basic configurations like web filtering, application control, policies, etc. ang hindi ko pa po nagagawa ay ang iapply sa specific user ang isang policy na nagawa ko kasi di ko makita ang mga users na na naka connect sa utm, me kulang po ba sa ginawa ko? kasi po pag click ko ng folder icon, admin at superadmin (group) lang ang nakikita ko.
sana po me makasagot? thanks in advance.
-- edited by racober on Nov 26 2015, 05:32 PM -
hi tpc . patulong po pano mag truncate ng string sa C programming. sa VB madali mag manipulate text string using Left, Right, Mid, and Len functions.
C platform na pag gagamitan ko. sana may makatulong. thank you!
ex. 0036120316000017 ----> eto po yung string.
char starting from 5 to 10 need ko store sa variable (x) bali output x = 120316
char starting from 14 to 16 need ko store sa variable (y) bali output y = 017
char starting from 1 to 3 need ko store sa variable (z) bali output z = 003
*paki gawan po ng sample code paano e truncate using C programming -
@chengky
Try to check kung may firewall ka. try mo disable.