[Firehol-support] How can I target all of the 10.67. network EXCEPT my LAN on 10.67.5.?

Tsaousis, Costa costa at tsaousis.gr
Thu Feb 26 12:38:23 GMT 2015


Rich, if you update FireHOL, the warning should be gone.

On Thu, Feb 26, 2015 at 2:23 PM, Tsaousis, Costa <costa at tsaousis.gr> wrote:
> Ok. found it:  https://home.regit.org/netfilter-en/secure-use-of-helpers/
>
> The setting FireHOL tries to set is available from kernel 3.5 and later.
>
> I'll update FireHOL to only use it when required (and issue a warning
> if not available).
>
>
> On Thu, Feb 26, 2015 at 2:08 PM, Rich Lott - Artful Robot
> <forums at artfulrobot.uk> wrote:
>> On 25/02/15 19:22, Tsaousis, Costa wrote:
>>>
>>> Regarding the last warning, it is not something to worry if you don't
>>> need it. Something is missing from your kernel probably (conntrack
>>> helpers for ftp, tftp, sip, pptp, etc).
>>> Which distribution and kernel version are you using? Have you compiled
>>> the kernel yourself or is a distribution supplied one?
>>
>>
>> I'm running this from Debian Wheezy:
>> Linux ar1 3.2.0-4-amd64 #1 SMP Debian 3.2.65-1+deb7u2 x86_64 GNU/Linux
>>
>>
>> Thanks,
>>
>> Rich



More information about the Firehol-support mailing list