[EFW 2.5.1] System Access Rules not working

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

[EFW 2.5.1] System Access Rules not working

Ahmed Morgan
Hello EFW Users
I like EFW and I have 2.5.1 , but my problem with System Access is now working
When I add rule

Source Address:   blank
Source Interface:  Any
service:                User define
protocol:              TCP : 10443
policy action:        allow
enabled:              checked

And for many try to make it working I discover if it work after restart it's not working and I can't access to EFW or ping from outsite, I have to do reset settings for my EFW
is there any solution for this bug ???


--
   ____  _                        _   __  __                             
  / __ \| |__  _ __ ___   ___  __| | |  \/  | ___  _ __ __ _  __ _ _ __  
 / / _` | '_ \| '_ ` _ \ / _ \/ _` | | |\/| |/ _ \| '__/ _` |/ _` | '_ \ 
| | (_| | | | | | | | | |  __/ (_| | | |  | | (_) | | | (_| | (_| | | | |
 \ \__,_|_| |_|_| |_| |_|\___|\__,_| |_|  |_|\___/|_|  \__, |\__,_|_| |_|
  \____/                                               |___/             
_ _ _ _ _ | | (_)_ __ _ ___ __ / \ __| |_ __ ___ (_)_ __ | | | | '_ \| | | \ \/ / / _ \ / _` | '_ ` _ \| | '_ \ | |___| | | | | |_| |> < / ___ \ (_| | | | | | | | | | | |_____|_|_| |_|\__,_/_/\_\ /_/ \_\__,_|_| |_| |_|_|_| |_|


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user
Reply | Threaded
Open this post in threaded view
|

Re: [EFW 2.5.1] System Access Rules not working

compdoc

> I like EFW and I have 2.5.1 , but my problem with System Access is now working

>When I add rule

 

>Source Address:   blank

>Source Interface:  Any

>service:                User define

>protocol:              TCP : 10443

>policy action:        allow

>enabled:              checked

 

 

Mine works when set this way:

 

Source Address:   blank

Source Interface:  RED

service:                <ANY>

protocol:              TCP : 10443

policy action:        allow with IPS

Position              First

enabled:              checked

 


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user
Reply | Threaded
Open this post in threaded view
|

Re: [EFW 2.5.1] System Access Rules not working

Ahmed Morgan
I did you setps with no luck
I can access to server if add to iptables from ssh to EFW Server
#> iptables -A INPUT -p TCP -i eth1 --dport 10443 -j ACCEPT
but how can I add to startup to load when EFW booting
?


On Mon, Sep 3, 2012 at 3:50 PM, compdoc <[hidden email]> wrote:

> I like EFW and I have 2.5.1 , but my problem with System Access is now working

>When I add rule

 

>Source Address:   blank

>Source Interface:  Any

>service:                User define

>protocol:              TCP : 10443

>policy action:        allow

>enabled:              checked

 

 

Mine works when set this way:

 

Source Address:   blank

Source Interface:  RED

service:                <ANY>

protocol:              TCP : 10443

policy action:        allow with IPS

Position              First

enabled:              checked

 


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user




--
   ____  _                        _   __  __                             
  / __ \| |__  _ __ ___   ___  __| | |  \/  | ___  _ __ __ _  __ _ _ __  
 / / _` | '_ \| '_ ` _ \ / _ \/ _` | | |\/| |/ _ \| '__/ _` |/ _` | '_ \ 
| | (_| | | | | | | | | |  __/ (_| | | |  | | (_) | | | (_| | (_| | | | |
 \ \__,_|_| |_|_| |_| |_|\___|\__,_| |_|  |_|\___/|_|  \__, |\__,_|_| |_|
  \____/                                               |___/             
_ _ _ _ _ | | (_)_ __ _ ___ __ / \ __| |_ __ ___ (_)_ __ | | | | '_ \| | | \ \/ / / _ \ / _` | '_ ` _ \| | '_ \ | |___| | | | | |_| |> < / ___ \ (_| | | | | | | | | | | |_____|_|_| |_|\__,_/_/\_\ /_/ \_\__,_|_| |_| |_|_|_| |_|


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user
Reply | Threaded
Open this post in threaded view
|

Re: [EFW 2.5.1] System Access Rules not working

sam.o
Hi,

Are you setting this under Firewall > System Access ?  This is remembered after restart for me.

Sam.

On 04/09/2012, at 7:06 PM, Ahmed Morgan <[hidden email]> wrote:

> I did you setps with no luck
> I can access to server if add to iptables from ssh to EFW Server
> #> iptables -A INPUT -p TCP -i eth1 --dport 10443 -j ACCEPT
> but how can I add to startup to load when EFW booting ?
>
> On Mon, Sep 3, 2012 at 3:50 PM, compdoc <[hidden email]> wrote:
> > I like EFW and I have 2.5.1 , but my problem with System Access is now working
>
> >When I add rule
>
>  
>
> >Source Address:   blank
>
> >Source Interface:  Any
>
> >service:                User define
>
> >protocol:              TCP : 10443
>
> >policy action:        allow
>
> >enabled:              checked
>
>  
>
>  
>
> Mine works when set this way:
>
>  
>
> Source Address:   blank
>
> Source Interface:  RED
>
> service:                <ANY>
>
> protocol:              TCP : 10443
>
> policy action:        allow with IPS
>
> Position              First
>
> enabled:              checked
>
>  
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> Efw-user mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/efw-user
>
>
>
>
> --
>    ____  _                        _   __  __                            
>   / __ \| |__  _ __ ___   ___  __| | |  \/  | ___  _ __ __ _  __ _ _ __  
>  / / _` | '_ \| '_ ` _ \ / _ \/ _` | | |\/| |/ _ \| '__/ _` |/ _` | '_ \
> | | (_| | | | | | | | | |  __/ (_| | | |  | | (_) | | | (_| | (_| | | | |
>  \ \__,_|_| |_|_| |_| |_|\___|\__,_| |_|  |_|\___/|_|  \__, |\__,_|_| |_|
>   \____/                                               |___/            
>
>  _     _                       _       _           _      
> | |   (_)_ __  _   ___  __    / \   __| |_ __ ___ (_)_ __  
> | |   | | '_ \| | | \ \/ /   / _ \ / _` | '_ ` _ \| | '_ \
> | |___| | | | | |_| |>  <   / ___ \ (_| | | | | | | | | | |
> |_____|_|_| |_|\__,_/_/\_\ /_/   \_\__,_|_| |_| |_|_|_| |_|
>                                                            
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
> Efw-user mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/efw-user


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user
Reply | Threaded
Open this post in threaded view
|

Re: [EFW 2.5.1] System Access Rules not working

Ahmed Morgan

Thanks it's working with chosing RED interface only

On Sep 4, 2012 11:27 AM, "Sam Osborne" <[hidden email]> wrote:
Hi,

Are you setting this under Firewall > System Access ?  This is remembered after restart for me.

Sam.

On 04/09/2012, at 7:06 PM, Ahmed Morgan <[hidden email]> wrote:

> I did you setps with no luck
> I can access to server if add to iptables from ssh to EFW Server
> #> iptables -A INPUT -p TCP -i eth1 --dport 10443 -j ACCEPT
> but how can I add to startup to load when EFW booting ?
>
> On Mon, Sep 3, 2012 at 3:50 PM, compdoc <[hidden email]> wrote:
> > I like EFW and I have 2.5.1 , but my problem with System Access is now working
>
> >When I add rule
>
>
>
> >Source Address:   blank
>
> >Source Interface:  Any
>
> >service:                User define
>
> >protocol:              TCP : 10443
>
> >policy action:        allow
>
> >enabled:              checked
>
>
>
>
>
> Mine works when set this way:
>
>
>
> Source Address:   blank
>
> Source Interface:  RED
>
> service:                <ANY>
>
> protocol:              TCP : 10443
>
> policy action:        allow with IPS
>
> Position              First
>
> enabled:              checked
>
>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> Efw-user mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/efw-user
>
>
>
>
> --
>    ____  _                        _   __  __
>   / __ \| |__  _ __ ___   ___  __| | |  \/  | ___  _ __ __ _  __ _ _ __
>  / / _` | '_ \| '_ ` _ \ / _ \/ _` | | |\/| |/ _ \| '__/ _` |/ _` | '_ \
> | | (_| | | | | | | | | |  __/ (_| | | |  | | (_) | | | (_| | (_| | | | |
>  \ \__,_|_| |_|_| |_| |_|\___|\__,_| |_|  |_|\___/|_|  \__, |\__,_|_| |_|
>   \____/                                               |___/
>
>  _     _                       _       _           _
> | |   (_)_ __  _   ___  __    / \   __| |_ __ ___ (_)_ __
> | |   | | '_ \| | | \ \/ /   / _ \ / _` | '_ ` _ \| | '_ \
> | |___| | | | | |_| |>  <   / ___ \ (_| | | | | | | | | | |
> |_____|_|_| |_|\__,_/_/\_\ /_/   \_\__,_|_| |_| |_|_|_| |_|
>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
> Efw-user mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/efw-user


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user

------------------------------------------------------------------------------
Got visibility?
Most devs has no idea what their production app looks like.
Find out how fast your code is with AppDynamics Lite.
http://ad.doubleclick.net/clk;262219671;13503038;y?
http://info.appdynamics.com/FreeJavaPerformanceDownload.html
_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user