Active Topics
-
Extra softwares in Sailfish using CLI, repositories, etc (117)
to SailfishOS by nieldk - 1 day, 11 hrs ago -
Firefox with Leste (6)
to Maemo 7 / Leste by teroyk - 2 days, 7 hrs ago - more...
|
2010-03-19
, 00:14
|
|
Posts: 10 |
Thanked: 3 times |
Joined on Mar 2010
|
#2
|
any answer please? 
by the way, I've just found iptables package here:
http://maemo.org/packages/view/iptables/
Can I just use it?
Which one should I download?
And do I just install the deb file?
Last edited by Bricker; 2010-03-19 at 00:26.
by the way, I've just found iptables package here:
http://maemo.org/packages/view/iptables/
Can I just use it?
Which one should I download?
And do I just install the deb file?
Last edited by Bricker; 2010-03-19 at 00:26.
|
|
2010-03-19
, 00:25
|
|
Posts: 1,096 |
Thanked: 760 times |
Joined on Dec 2008
|
#3
|
Originally Posted by Bricker
correct, iptables is a kernel module in linux but i not in the fremntle kernel.
Hi,
Can anyone tell me how to install iptables firewall on N900?
As far as I am aware, the default kernel is not compatible with iptables, or is it?
If it's not, how do I install both the compatible kernel and the iptables itself?
you would need to compile your own kernel and put it in an image and flash the device with it I believe. Not ure if you cn recompile kernel on device, but I doubt it
Originally Posted by Bricker
If you are new to linux, maybe try recopiling a kernel on a desktop distro first before trying it on such a customized embedded kind of device. I am no stranger to linux or even custom kernels, but recompiling a kernel for such a specific device is more thn I want to bite off for sure.
I've found some posts which are related to my question but since I am new to Linux I still couldn't understand how to install them
Originally Posted by Bricker
yes, most likely. the firmware updates just rewrite that entire part of the filesystem i believe
Also, if the default kernel of N900 is not compatible with iptables and if I do a firmware up'grade on my N900, will the compatible kernel got replaced so that I will have to reinstall it again?
Originally Posted by Bricker
well, the device is not really running ny service so a firewall isn't really necessary, IMO
Thank you in advance.
P.S.: If there's something wrong with what I said, please correct me since I'm not sure if I understood those things properly. All I want is a firewall
|
|
2010-03-19
, 00:48
|
|
Posts: 10 |
Thanked: 3 times |
Joined on Mar 2010
|
#4
|
Thank you for your answer. 
By the way, can I just use the package here and how do I use it?:
http://maemo.org/packages/view/iptables/
The explanation says that:
Does this mean that it includes the kernel?
Last edited by Bricker; 2010-03-19 at 02:18.
By the way, can I just use the package here and how do I use it?:
http://maemo.org/packages/view/iptables/
The explanation says that:
"These are the user-space administration tools for the Linux kernel's netfilter and iptables."
Originally Posted by quipper8
Does the device block all incoming connections by default?
well, the device is not really running ny service so a firewall isn't really necessary, IMO
Last edited by Bricker; 2010-03-19 at 02:18.
|
|
2010-03-19
, 02:29
|
|
Posts: 1,341 |
Thanked: 708 times |
Joined on Feb 2010
|
#5
|
Originally Posted by quipper8
well, the device is not really running ny service so a firewall isn't really necessary, IMO
There is sshd available and working for N900.
|
|
2010-03-19
, 04:35
|
|
Posts: 10 |
Thanked: 3 times |
Joined on Mar 2010
|
#6
|
Originally Posted by zimon
Thanks. This answers my question on whether the device blocks all incoming connections by default or not.
There is sshd available and working for N900.
I still need some help on iptables though
| The Following User Says Thank You to Bricker For This Useful Post: | ||
|
|
2010-03-19
, 06:56
|
|
Posts: 540 |
Thanked: 288 times |
Joined on Sep 2009
|
#7
|
Also discussed in this thread.
I'm still not 100% sure you cannot not do very basic iptables (setting input policy to drop for example) with the stock kernel.
I have not tried it and I'm running a custom kernel because I'm developing a mobile hotspot.
Compiling a new kernel (or just modules in case they do not require any special/extended symbols in the kernel proper, but netfilter does...) is not really that hard once you have a working scratchbox (see for example the bottom of the hotspot project page).
There is also kernel-maemo which is a (separate) custom kernel with even more features than the hotspot one (which basically adds only netfilter and qos).
As for "sshd available and working" only if you explicitly install it.
I'm still not 100% sure you cannot not do very basic iptables (setting input policy to drop for example) with the stock kernel.
I have not tried it and I'm running a custom kernel because I'm developing a mobile hotspot.
Compiling a new kernel (or just modules in case they do not require any special/extended symbols in the kernel proper, but netfilter does...) is not really that hard once you have a working scratchbox (see for example the bottom of the hotspot project page).
There is also kernel-maemo which is a (separate) custom kernel with even more features than the hotspot one (which basically adds only netfilter and qos).
As for "sshd available and working" only if you explicitly install it.
| The Following User Says Thank You to rambo For This Useful Post: | ||
|
|
2010-03-20
, 06:08
|
|
Posts: 10 |
Thanked: 3 times |
Joined on Mar 2010
|
#9
|
Originally Posted by rambo
I think this basic iptables suit my needs enough.
.I'm still not 100% sure you cannot not do very basic iptables (setting input policy to drop for example) with the stock kernel.
All I want is to block all incoming connection and block unused outgoing ports, allowing only outgoing ports that I use.
| The Following User Says Thank You to Bricker For This Useful Post: | ||
|
|
2010-03-21
, 01:18
|
|
Posts: 10 |
Thanked: 3 times |
Joined on Mar 2010
|
#10
|
Can anyone help me further?
Can anyone tell me how to install iptables firewall on N900?
As far as I am aware, the default kernel is not compatible with iptables, or is it?
If it's not, how do I install both the compatible kernel and the iptables itself?
I've found some posts which are related to my question but since I am new to Linux I still couldn't understand how to install them
Also, if the default kernel of N900 is not compatible with iptables and if I do a firmware upgrade on my N900, will the compatible kernel got replaced so that I will have to reinstall it again?
Thank you in advance.
P.S.: If there's something wrong with what I said, please correct me since I'm not sure if I understood those things properly. All I want is a firewall
Last edited by Bricker; 2010-03-19 at 00:13.