headers
Mark Thorp Duxbury | 1 Aug 2004 04:31

Can't disable firewall within guarddog

Greetings,

Please forgive me if this has been discussed before but looking through the 
archives I was unable to find a resolution to my problem...

I have used guarddog for several years and have been very happy with it but 
have been having a problem lately in that I am unable to shut down the 
firewall from within guarddog.  With guarddog 2.2.0 I a the message that 
guarddog can find iptables (this only happens when turning the firewall 
*off*, otherwise it works fine.  'iptables' in in /sbin/ if that matters) and 
with 2.3.1 a syntax error in an "if" statement (looks like bash).  I did see 
in a post back in April (I think) in which the 2.3.1 issue was discussed, but 
I did not see a solution or workaround - If the problem I'm having seeing 
with 2.2.0 was discussed I missed it (and I'm sorry if I did).  I don't 
remember having the problem ever before and I haven't needed to disable the 
firewall for quite some time so I'm not sure when it started.  I am on the 
2.4.6 kernel.

I would greatly appreciate any solution or workaround anyone might be able to 
provide or if it's something that I have wrong here, any pointers to where to 
start looking.

Thank you very much,
Mark

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
(Continue reading)

Permalink | Reply | 0 comments |
headers
Simon Edwards | 2 Aug 2004 01:05
Favicon

Guarddog development version 2.3.2 released


* August 1st 2004 Simon Edwards <simon <at> simonzone.com>
- 2.3.2 release. Development release.
- Added Microsoft Media Server protocol (typically used by Windows Media
  player).
- Fixed a bug in the disable firewall script.
- Fix for NTP.

http://www.simonzone.com/software/guarddog/

sorry about how long it has taken for 2.3.2 to show up.

cheers,

--

-- 
Simon Edwards             | Guarddog Firewall
simon <at> simonzone.com       | http://www.simonzone.com/software/
Nijmegen, The Netherlands | "ZooTV? You made the right choice."

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
Permalink | Reply | 2 comments |
headers
Ryan R. La Mothe | 2 Aug 2004 23:04
Picon
Favicon

GuardDog Comparisons

Hello,

I am currently running the Firestarter firewall, but I am interested in possibly trying out the GuardDog
software firewall to see which one suits my needs the best.  I have a couple of questions:

1) I am running Redhat Fedora Core 2 with a 2.6.x kernel.  Does GuardDog support IPTables and the 2.6.x kernels?

2)  This server is both a firewall and an IP masquerading server with a DHCP server running.  Does GuardDog
support autodetection of my network settings or can be setup with minimal mucking around in
configuration files?

3)  Has anyone used Firestarter and then switched to GuardDog?  If so, can you please give me your impressions
of both software packages?  Thanks.

4)  Why does this email list reply to the direct sender of the email instead of the email list?  That doesn't
make any sense.

Thanks,
Ryan

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
Permalink | Reply | 0 comments |
headers
Ed | 3 Aug 2004 07:22

Re: Guarddog development version 2.3.2 released

Hi Simon,

You mentioned that you can't think of much that could/should be added to 
Guarddog.

Here's a suggestion.  I find that the arrangement of protocols is somewhat 
arbitrary.  I often have to check two or three categories to find the protocol 
I'm looking for.  (Why is ntp a Data serv and http a File transfer.)

How about an option to sort by port rather than category?  I can see some 
issues where a protocol requires more than one port, but there could certainly 
be duplicate entries so that all the ports were covered.  I think that would 
make it much easier to find a protocol when you know the port.

Just to keep you off the street you understand. ;>)

Ed

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
Permalink | Reply | 0 comments |
headers
Longie | 4 Aug 2004 11:40
Picon

Configure to allow abc torrent

Hello All,

Everything is working like a dream but I am running a LAN zone which allows
all the specified programs i.e. messenger to run. However, I want to run abc
torrent. I setup abc on ports 50000 to 50020 and created a user-defined rule
in the zone properties to allow these ports under the internet tab. I still
get time-out errors on all the torrents. When I disable the firewall it
works fine.

Any ideas! Might be over looking something but I have tried different
combinations. My network is the same layout as described in the tutorial for
a router configuration.

Regards,

Longie

-------------------
W: www.dingleonline.com
E: sales <at> dingleonline.com

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
Permalink | Reply | 0 comments |
headers
Manuel | 4 Aug 2004 21:22
Picon
Picon
Favicon

guarddog suggestions

I think Guarddog is superb as *personal firewall*, i would prefix a 'k' 
and include it in KDE.

I absolutely like its philosophy about 'hiding the ugly' of 
iptables/netfilter (Hey! I'm not an admin, I don't want to know what the 
hell is it :)) Other GUIs I've seen force you to learn about iptables 
even more than you need to write the script by hand. You completely get 
the point about this.

Although, I consider myself a /geek/ (like almost any linux user) and I 
think if I put this on any of my buddies hands I'm sure they would be 
scaried or get stuck and throw away the firewall completely. Give them a 
chance to get a /working full stealth mode/ without facing techy things 
(indeed you're very close to that).

So it would be nice to show a wizard at first startup (did I say wizard? 
oh...i'm sorry...i don't...eerh...[run]) where my non-geek friends could 
tell:
1) i have an active cable/DSL connection (probably i'm using DHCP, sure 
i'm using DNS),
2) i only browse the web, read email and chat in yahoo and msn, that's all!.
I'm sure you will reach this easily.

Here you are a few things that (IMHO) will improve this fantastic app:

* Zone: more help
- Place 'About' button near 'Help' button
- Try to guess LAN zone on first boot if there's one: eth interface, 
static IP
- Explain the right list (connection): what zones will reach this zone,
(Continue reading)

Permalink | Reply | 0 comments |
headers
Michael Simonsen | 4 Aug 2004 23:32
Picon

Unusable console

Hi all
is there a way to use the console without dropping the otherwise great program 
Guarddog. I have tried to search the search.gmane.org but all I could find 
was other people with the same problem, and not one single answer :(
I am using guarddog 2.3.0-2 on debian sarge
--

-- 
;-)
Michael Simonsen

-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
Permalink | Reply | 0 comments |
headers
Alan | 5 Aug 2004 08:09
Favicon

Re: Guarddog not works with LAN gateway IP | internet zone

Kevin Ferguson wrote:

> Alan wrote:
>
> [ Guarddog blocks all Mozilla http and all Mozilla email even though 
> common protocols including http and email had been allowed in Guarddog ]
>
> Hi Mate
>
> If you log in as root, and do tail +f /var/log/messages  that will 
> give you a clue what is being blocked.   Also its worth checking your 
> smoothwall firewall logs too, as that will tell you what it has 
> blocked too. 

Thanks.  Doing so didn't turn up anything.  A request, a 
suggestion-addition for the help file: "if a running network app gets 
blocked upon Guarddog activation, then it may be necessary to shutdown 
and restart that app in order for it to not be blocked by Guarddog."

BTW a nice help file already in Guarddog.  Explains concepts and how to 
so as to get up and going <- help already does a very well excellent job 
of that.  Very clear!  And, not overly lengthy.  IOW, concise enough.

I like Guarddog.  It works now.

(blush) all that was needed in order to cure the problem was to 
apply/activate Guarddog then *shutdown Mozilla* then restart Mozilla.

Believe it or not, this was about the fifth or seventh time that I had 
tried activating Guarddog.  Each time, Mozilla had been running when I
(Continue reading)

Permalink | Reply | 1 comment |
headers
Aad Rijnberg | 8 Aug 2004 14:12
Picon

Fedora Core 2 compilation problem

Hello,

I have been trying to compile Guarddog 2.2.0 sources for FC2. I ran into
a problem with the validation of the protocoldb.dtd. I got the following
error:

	/usr/bin/xmllint --noout --valid --dtdvalid protocoldb.dtd
 	networkprotocoldb.xml

	networkprotocoldb.xml:4: I/O error : failed to load HTTP
 	resource
	"http://www.simonzone.com/software/protocoldb/1.0/protocoldb.dtd">
	^
	networkprotocoldb.xml:25: validity error : Validation failed: no
	DTD found !
	<protocoldb lines="2775">
	^
	make[2]: *** [dbvalid] Error 4

Then I disabled the line:
	$(XMLLINT) --noout --valid --dtdvalid protocoldb.dtd $<
after line:
	dbvalid: networkprotocoldb.xml protocoldb.dtd
in the Makefile in subdirectory protocoldb, and everything went OK. No
further problems, and the program runs OK.

Questions:
----------
- What is the reason for the error? Is the file
(http://www.simonzone.com/software/protocoldb/1.0/protocoldb.dtd) not
(Continue reading)

Permalink | Reply | 4 comments |
headers
Kevin Ferguson | 8 Aug 2004 18:11
Picon
Favicon

Re: Guarddog not works with LAN gateway IP | internet zone

Alan wrote:

> Kevin Ferguson wrote:
>
>> Alan wrote:
>>
>> [ Guarddog blocks all Mozilla http and all Mozilla email even though 
>> common protocols including http and email had been allowed in Guarddog ]
>>
>> Hi Mate
>>
>> If you log in as root, and do tail +f /var/log/messages  that will 
>> give you a clue what is being blocked.   Also its worth checking your 
>> smoothwall firewall logs too, as that will tell you what it has 
>> blocked too. 
>
>
> Thanks.  Doing so didn't turn up anything.  A request, a 
> suggestion-addition for the help file: "if a running network app gets 
> blocked upon Guarddog activation, then it may be necessary to shutdown 
> and restart that app in order for it to not be blocked by Guarddog."
>
> BTW a nice help file already in Guarddog.  Explains concepts and how 
> to so as to get up and going <- help already does a very well 
> excellent job of that.  Very clear!  And, not overly lengthy.  IOW, 
> concise enough.
>
> I like Guarddog.  It works now.
>
> (blush) all that was needed in order to cure the problem was to
(Continue reading)

Permalink | Reply | 0 comments |

Gmane