Re: [Announce] genwall a simple iptables firewall
 

Thank you
Still it is not complete but more useable than before.
Iptables logging should also be possible when you install sysklogd and if your running kernel supports ip filter logging.

I had some problems replacing simple-syslog-daemon with sysklogd. I needed to create manually a directory.

If klogd is not installed you also need to install klogd_2.5-5maemo3.12+0m6_armel.deb.

Done: https://openrepos.net/content/halftux/genwall

Re: [Announce] genwall a simple iptables firewall
 

Finally I had the same problem like you. I wiped and flashed one of my N900 and after installing genwall, I also could not start it with the desktop file. Before I installed rootsh and openssh.

After changing the genwall.desktop file in "/usr/share/applications/hildon/".

Code:

---

Exec=sudo run-standalone.sh /opt/genwall/genwall
changed to
Exec=sudo /usr/bin/run-standalone.sh /opt/genwall/genwall

---

I could start genwall also with the desktop file.
Then I reversed my changes and I still could start with the desktop file.:confused:

Re: [Announce] genwall a simple iptables firewall
 

So here for everyone who is wondering that no comment was made after the last release.

latest version 1.1.4 changelog:

* wifi adhoc fixed message box
* wifi adhoc check for wireless-tools
* wifi adhoc pid file gets removed
* wifi adhoc reset ip when deactivated
* usb lan reset ip when deactivated
* fixed dnsmasq pid file for lan only
* added kernel arp table (clients)
* enhanced dnsmasq info
* bt pan added check connection
* adv. settings lsof command modular

New features:

Kernel arp table
{Route-IP info}->button:clients
shows connected clients

Enhanced dnsmasq info
{Route-IP info}->button:dnsmasq
shows dhcp leases

Lsof modular command
{Local-Settings}->button:advanced settings
There you can change the command which output is shown in {Local-lsof}. Be aware that this command runs as root. You can put different parameters or different commands like netstat or ifconfig....

Re: [Announce] genwall a simple iptables firewall
 

N900 6th anniversary genwall release out now. With this you can link two N900s via bt pan.

changelog 1.2.0

* depends on libqtm-12
* changed package description
* changed resolv handling
* added open dns server as default
* added window titles
* added lsof command to save ini
* fixed save ini block host load file
* refresh filter view when deleting rules
* added bluetooth manager
* added initiate panu connection
* added top menu
* added request for dhcp ip

New Features:

Changed resolv handling
there is now an option to add DNS servers to a temporarily resolv file (/var/run/resolv.conf).
The file /etc/resolv.conf will be untouched.

Added bluetooth manager
now there is the possibility to search and pair bluetooth devices.
It is also possible to list the services.
Furthermore you can initiate a bt pan connection.
With this you can make a bt pan connection to another N900(Tutorial will follow).

Added "dhclient" dialog
for requesting a dhcp ip address for device usb0 or bnep0

Re: [Announce] genwall a simple iptables firewall
 

Would definetly like to know this, also can it be like n900 client any other device as server on bt pan? is it possible to include bt dun in genwall server/client like bt pan?

Re: [Announce] genwall a simple iptables firewall
 

If I understand correctly it should be possible, but soon you could read the tutorial and try.

I will set this on the todo/try list.

Re: [Announce] genwall a simple iptables firewall
 

Bluetooth PAN Connection

blue theme N900(1)
orange theme N900(2)
Tutorial is attached to this thread for copy to genwall help.[/LIST]

Prerequirements for pan:

[N900]
/etc/bluetooth/main.conf
comment out: DisablePlugins =network,input,hal


Search/Pair BT device:

1. [N900] switch on bluetooth and make it discoverable

   
   http://www.setius.net/bilder/n900/genwall/route_bt.png
   

2. [N900] {Route-BT} click search button
3. [N900] {Route-BT} click scan button

   http://www.setius.net/bilder/n900/genwall/bt_scan.png
   mac address color code: white=not paired; blue=paired; green=trusted paired

4. [N900] right click on found mac-address. Click Auth Pair.

   http://www.setius.net/bilder/n900/genwall/bt_pair.png

5. [N900] Accept pair.

   http://www.setius.net/bilder/n900/ge...t_ackpair1.png

6. [N900(2)] Accept pair.

   http://www.setius.net/bilder/n900/ge...t_ackpair2.png

Create PAN between 2 devices

-[N900] see if the other device support pan service

http://www.setius.net/bilder/n900/ge...bt_service.png

[N900] genwall

{Route-BT}

1. Search BT devices (see above)
2. Select BT mac address (it must be a trusted device, it should be green)
3. Push connect button. Check under {Route-IP info} if bnep0 has an ip address. If bnep0 has no ip address try to push stop and start button.

[N900(2)] genwall

{Route-IP info}

1. After bluetooth icon becomes blue push dhclient button.

   http://www.setius.net/bilder/n900/ge...t_dhclient.png

2. Choose bnep0 as interface and confirm with ok button.

   http://www.setius.net/bilder/n900/genwall/bt_dhcp.png

3. Now you should have an ip address.
4. To end the connection push the stop button on N900

Re: [Announce] genwall a simple iptables firewall
 

Tried a android phone which supports pan as server, set it on bluetooth tethering and tried to connect via genwall, it connects but dissconnects in a moment. About, bluetooth dun yeah please do, it will definetly help me and others who have n900 with dead sim slots and have spare dumb phones with dun support, there is matans thread on it but it never fully worked.

Re: [Announce] genwall a simple iptables firewall
 

If connect to "gn":
For the android I got a message and needed to allow the N900 to connect otherwise it will disconnect. If a connection timed out or fails after this you need to push the stop button before try to connect again.

*Edit: I thought I got it running once and could use internet from android. The only thing is I can't get automatic an ip address from an android device. So I put manually an IP corresponding to the android btn0 ip, added DNS server and the gateway I set to the btn0 ip. But now can't get it to work.


Need to look into the kernel modules, test config files and writing a gui this will take some time.

Re: [Announce] genwall a simple iptables firewall
 

Released version 1.2.1

added nap profile for connecting

• N900: connect with nap
• android: accept connection
• N900: request dhcp (dhclient bnep0)

Now you should be able to use internet from other device.
It could be that the pairing from genwall is not working 100% with android, so to be save initiate the pairing from android.