Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

The meek shall inherit the earth; the rest of us will go to the stars.

computers / alt.os.linux.ubuntu / iptables trigger rules

SubjectAuthor
* iptables trigger rulesMr. Man-wai Chang
`* Re: iptables trigger rulesGrant Taylor
 `* Re: iptables trigger rulesMr. Man-wai Chang
  `- Re: iptables trigger rulesGrant Taylor

1
iptables trigger rules

<uue0h2$2durv$1@toylet.eternal-september.org>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=3958&group=alt.os.linux.ubuntu#3958

  copy link   Newsgroups: alt.os.linux.ubuntu
Path: i2pn2.org!i2pn.org!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!toylet.eternal-september.org!.POSTED!not-for-mail
From: toylet.toylet@gmail.com (Mr. Man-wai Chang)
Newsgroups: alt.os.linux.ubuntu
Subject: iptables trigger rules
Date: Mon, 1 Apr 2024 17:58:57 +0800
Organization: A noiseless patient Spider
Lines: 6
Message-ID: <uue0h2$2durv$1@toylet.eternal-september.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Mon, 01 Apr 2024 09:58:58 +0200 (CEST)
Injection-Info: toylet.eternal-september.org; posting-host="476af456558d93ff06bb1ea8c0efc8ad";
logging-data="2554751"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX182aFSC2nm96SmtpRl3KluV"
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:3CKbRwwm3LoWDDTdjGJRGlqae2c=
Content-Language: en-US
 by: Mr. Man-wai Chang - Mon, 1 Apr 2024 09:58 UTC

What are these rules trying to do?

:trigger_out - [0:0]
-A FORWARD -i vlan2 -o br0 -j TRIGGER--trigger-proto --trigger-match 0-0
--trigger-relate 0-0
-A FORWARD -i br0 -j trigger_out

Re: iptables trigger rules

<uueqik$nc9$1@tncsrv09.home.tnetconsulting.net>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=3959&group=alt.os.linux.ubuntu#3959

  copy link   Newsgroups: alt.os.linux.ubuntu
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!diablo1.usenet.blueworldhosting.com!tncsrv06.tnetconsulting.net!tncsrv09.home.tnetconsulting.net!.POSTED.omega.home.tnetconsulting.net!not-for-mail
From: gtaylor@tnetconsulting.net (Grant Taylor)
Newsgroups: alt.os.linux.ubuntu
Subject: Re: iptables trigger rules
Date: Mon, 1 Apr 2024 12:23:32 -0500
Organization: TNet Consulting
Message-ID: <uueqik$nc9$1@tncsrv09.home.tnetconsulting.net>
References: <uue0h2$2durv$1@toylet.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Mon, 1 Apr 2024 17:23:32 -0000 (UTC)
Injection-Info: tncsrv09.home.tnetconsulting.net; posting-host="omega.home.tnetconsulting.net:198.18.1.140";
logging-data="23945"; mail-complaints-to="newsmaster@tnetconsulting.net"
User-Agent: Mozilla Thunderbird
Content-Language: en-US
In-Reply-To: <uue0h2$2durv$1@toylet.eternal-september.org>
 by: Grant Taylor - Mon, 1 Apr 2024 17:23 UTC

On 4/1/24 04:58, Mr. Man-wai Chang wrote:
> What are these rules trying to do?
>
> :trigger_out - [0:0]
> -A FORWARD -i vlan2 -o br0 -j TRIGGER--trigger-proto --trigger-match 0-0
> --trigger-relate 0-0
> -A FORWARD -i br0 -j trigger_out

I don't recognize -- what appears to be -- the TRIGGER iptabes match
extension.

Try man iptables-extensions on your system and search for TRIGGER.

You can also try the following to see if it gives any output:

iptables -j TRIGGER -h

--
Grant. . . .

Re: iptables trigger rules

<uulbmb$esca$1@toylet.eternal-september.org>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=3982&group=alt.os.linux.ubuntu#3982

  copy link   Newsgroups: alt.os.linux.ubuntu
Path: i2pn2.org!i2pn.org!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!toylet.eternal-september.org!.POSTED!not-for-mail
From: toylet.toylet@gmail.com (Mr. Man-wai Chang)
Newsgroups: alt.os.linux.ubuntu
Subject: Re: iptables trigger rules
Date: Thu, 4 Apr 2024 12:52:25 +0800
Organization: A noiseless patient Spider
Lines: 9
Message-ID: <uulbmb$esca$1@toylet.eternal-september.org>
References: <uue0h2$2durv$1@toylet.eternal-september.org>
<uueqik$nc9$1@tncsrv09.home.tnetconsulting.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Thu, 04 Apr 2024 04:52:27 +0200 (CEST)
Injection-Info: toylet.eternal-september.org; posting-host="312c2ddeeb9441674f3cee0050430a40";
logging-data="487818"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/5TwDUlMl+U+JDyzHO7L9h"
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:b5UadP2I11q2GuBKI71H1mgZ3X8=
Content-Language: en-US
In-Reply-To: <uueqik$nc9$1@tncsrv09.home.tnetconsulting.net>
 by: Mr. Man-wai Chang - Thu, 4 Apr 2024 04:52 UTC

On 2/4/2024 1:23 am, Grant Taylor wrote:
>
> You can also try the following to see if it gives any output:
>
> iptables -j TRIGGER -h

Thanks! I have never used the TRIGGER function of iptables. I only know
it's useful in port-knocking.

Re: iptables trigger rules

<uunocm$pe6$1@tncsrv09.home.tnetconsulting.net>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=3989&group=alt.os.linux.ubuntu#3989

  copy link   Newsgroups: alt.os.linux.ubuntu
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!diablo1.usenet.blueworldhosting.com!tncsrv06.tnetconsulting.net!tncsrv09.home.tnetconsulting.net!.POSTED.omega.home.tnetconsulting.net!not-for-mail
From: gtaylor@tnetconsulting.net (Grant Taylor)
Newsgroups: alt.os.linux.ubuntu
Subject: Re: iptables trigger rules
Date: Thu, 4 Apr 2024 21:41:26 -0500
Organization: TNet Consulting
Message-ID: <uunocm$pe6$1@tncsrv09.home.tnetconsulting.net>
References: <uue0h2$2durv$1@toylet.eternal-september.org>
<uueqik$nc9$1@tncsrv09.home.tnetconsulting.net>
<uulbmb$esca$1@toylet.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Fri, 5 Apr 2024 02:41:26 -0000 (UTC)
Injection-Info: tncsrv09.home.tnetconsulting.net; posting-host="omega.home.tnetconsulting.net:198.18.1.140";
logging-data="26054"; mail-complaints-to="newsmaster@tnetconsulting.net"
User-Agent: Mozilla Thunderbird
Content-Language: en-US
In-Reply-To: <uulbmb$esca$1@toylet.eternal-september.org>
 by: Grant Taylor - Fri, 5 Apr 2024 02:41 UTC

On 4/3/24 23:52, Mr. Man-wai Chang wrote:
> Thanks!

You're welcome.

> I have never used the TRIGGER function of iptables. I only know it's
> useful in port-knocking.

I've implemented port knocking for my systems in pure kernel space using
iptables recent match extension & target. No user space process required.

I did similar about 20 years ago with tiered ban times for SSH brute
force connection attempts. Again, pure kernel space.

--
Grant. . . .

1
server_pubkey.txt

rocksolid light 0.9.8
clearnet tor