Firewall Builder

=20

=====
Paul J. Martinez
---
pauljmartinez@...
http://www.fatlogic.com/

__________________________________________________
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com

This communication is confidential and may be legally privileged. If it is not addressed to you, you are on notice of its status. Please immediately contact us at our cost and destroy it. Please do not use, disclose, copy, distribute or retain any of it without our authority - to do so could be a breach of confidence. Thank you for your co-operation. If you need assistance, please contact Baycorp Advantage on either :- 
Australia 133124 or New Zealand +64 9 356 5800

All addresses for personnel are in the format of 'firstname.lastname@...' and any service addresses will be based on the format in these examples :-

assistonline.nz@...
collections.nz@...
customerservice.nz@...
sales.nz@...
communications.nz@...
businessdata@...
invest@...
marketingsolutions@...
jobs@...
webmaster@...

Please update your contact details accordingly.

Thank-You!

_________________________________________________________________
MSN Fotos: la forma más fácil de compartir e imprimir fotos. 
http://photos.msn.es/support/worldwide.aspx

Hi I have just installed the RPM's for Redhat 8.0 but when I try to start
fwbuilder I get the following error -

fwbuilder: relocation error: /usr/lib/libgdkmm-1.2.so.1: undefined symbol:
cerr

Any Ideas or suggestions would be greatly appreciated.
Thank You,
Dave

-- 
Sincerely,
David Ellis

I just added this to FAQ. See #2.5

--vk


David Ellis wrote:

>Hi I have just installed the RPM's for Redhat 8.0 but when I try to start
>fwbuilder I get the following error -
>
>fwbuilder: relocation error: /usr/lib/libgdkmm-1.2.so.1: undefined symbol:
>cerr
>
>Any Ideas or suggestions would be greatly appreciated.
>Thank You,
>Dave
>
>  
>

Tank you Vadim, You Rock!!
>
> I just added this to FAQ. See #2.5
>
> --vk
>
>
> David Ellis wrote:
>
>>Hi I have just installed the RPM's for Redhat 8.0 but when I try to
>> start fwbuilder I get the following error -
>>
>>fwbuilder: relocation error: /usr/lib/libgdkmm-1.2.so.1: undefined
>> symbol: cerr
>>
>>Any Ideas or suggestions would be greatly appreciated.
>>Thank You,
>>Dave
>>
>>


-- 
Sincerely,
David Ellis
Chief Systems/Security Officer
MCSE, CCSE, CCNA, CCA
NightWatch Network & Security Solutions
Two Railroad Ave- Suite 307
http://www.nightwatchnss.com
207.384.2211 Tel
603.205.4416 Cell

Chop chop, man.  Where's your CISSP?  Your certification count is woefully 
small.


Sincerely,
David Ellis
Chief Systems/Security Officer
MCSE, CCSE, CCNA, CCA                   <---------------------
NightWatch Network & Security Solutions
Two Railroad Ave- Suite 307
http://www.nightwatchnss.com
207.384.2211 Tel
603.205.4416 Cell




Don't mind me.  I'm just jealous.

Hello Vadim Kurland, Vadim Zaliva
First I want you to thank you for such incredible product .
Second I have a question regarding NAT:
I trying to add virtual address to NAT and I resiving following error during
compilations:
"cannot add virtual address xxx.xxx.xxx.xxx"
Thanks,
Sergey
sergey@...

On Monday, February 10, 2003, at 02:42  PM, Sergey Endjirgli wrote:

> Hello Vadim Kurland, Vadim Zaliva
> First I want you to thank you for such incredible product .
> Second I have a question regarding NAT:
> I trying to add virtual address to NAT and I resiving following error 
> during
> compilations:
> "cannot add virtual address xxx.xxx.xxx.xxx"
>

this error is explained in Firewall Builder FAQ, please take a look.

--vk

__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com

RndidWlsZGVyLWRpc2N1c3Npb26jrMT6usOjoQ0KDQoJDQoNCqGhoaGhoaGhoaGhoaGhoaHWwg0K
wPGjoQ0KIAkJCQkNCg0KoaGhoaGhoaGhoaGhoaGhoWtpZGd1bjIwMDAwDQqhoaGhoaGhoaGhoaGh
oaGha2lkZ3VuMjAwMDBAaG90bWFpbC5jb20NCqGhoaGhoaGhoaGhoaGhoaGhoaGhMjAwNC0wMS0x
Mg0K

hi,

i have installed fwbuilder on a box with existing ip-table roules. is there
a posibility, to import existing iptables-roules to fwbuilder? i do not want
to create every rule (over 150) again if it is not nessesary.
thank you in advance for your reply

alex

-- 
+++ NEU bei GMX und erstmalig in Deutschland: TÜV-geprüfter Virenschutz +++
100% Virenerkennung nach Wildlist. Infos: http://www.gmx.net/virenschutz

On Mar 3, 2004, at 1:38 PM, Alex Saltor wrote:

> hi,
>
> i have installed fwbuilder on a box with existing ip-table roules. is 
> there
> a posibility, to import existing iptables-roules to fwbuilder? i do 
> not want
> to create every rule (over 150) again if it is not nessesary.
> thank you in advance for your reply
>

unfortunately there is no way to import rules like that.

--vk

Hi everybody

I am new to the list and fwbuilder. I got it installed on a SuSE 9.0=
 (download edition), and I am attempting my first stumbling steps....
When I try to compile a rules for a firewall I get:

fwb_ipt: relocation error: /usr/lib/libfwbuilder.so.5: undefined symbol:=
 _ns_flagdata

here are the rpm's used outside of the `normal` SuSE stuff

fwbuilder-1.1.2-1.suse90.i586.rpm    =20
libfwbuilder-1.0.2-2.suse90.i586.rpm
fwbuilder-ipt-1.1.2-1.mdk92.i586.rpm =20
libsigc++-1.0.4-272.i586.rpm
libsigc++-devel-1.0.4-272.i586.rpm
gtkmm-1.2.10-154.i586.rpm            =20
gtkmm-devel-1.2.10-154.i586.rpm

Any ideas

Thanks
Erich

THINK=20
P=FCntenstrasse 39=20
8143 Stallikon=20
mailto:erich.titl@...
PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16

On May 6, 2004, at 7:13 AM, Erich Titl wrote:

> Hi everybody
>
> I am new to the list and fwbuilder. I got it installed on a SuSE 9.0 =20=

> (download edition), and I am attempting my first stumbling steps....
> When I try to compile a rules for a firewall I get:
>
> fwb_ipt: relocation error: /usr/lib/libfwbuilder.so.5: undefined =20
> symbol: _ns_flagdata
>
> here are the rpm's used outside of the `normal` SuSE stuff
>
> fwbuilder-1.1.2-1.suse90.i586.rpm
> libfwbuilder-1.0.2-2.suse90.i586.rpm
> fwbuilder-ipt-1.1.2-1.mdk92.i586.rpm

this one is for Mandrake. You need to deinstall it and then download =20
and install RPM build for SuSE.

>
> libsigc++-1.0.4-272.i586.rpm
> libsigc++-devel-1.0.4-272.i586.rpm
> gtkmm-1.2.10-154.i586.rpm
> gtkmm-devel-1.2.10-154.i586.rpm
>
> Any ideas
>
> Thanks
> Erich
>
> THINK
> P=FCntenstrasse 39
> 8143 Stallikon
> mailto:erich.titl@...
> PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16
>
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by Sleepycat Software
> Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to =20=

> deliver
> higher performing products faster, at low TCO.
> http://www.sleepycat.com/telcomwpreg.php?=20
> From_______________________________________________
> Fwbuilder-discussion mailing list
> Fwbuilder-discussion@...
> https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion

Vadim

At 17:45 06.05.2004, Vadim Kurland wrote:

>On May 6, 2004, at 7:13 AM, Erich Titl wrote:
>
>>Hi everybody
>>
>>I am new to the list and fwbuilder. I got it installed on a SuSE 9.0
>>(download edition), and I am attempting my first stumbling steps....
>>When I try to compile a rules for a firewall I get:
>>
>>fwb_ipt: relocation error: /usr/lib/libfwbuilder.so.5: undefined
>>symbol: _ns_flagdata
>>
>>here are the rpm's used outside of the `normal` SuSE stuff
>>
>>fwbuilder-1.1.2-1.suse90.i586.rpm
>>libfwbuilder-1.0.2-2.suse90.i586.rpm
>>fwbuilder-ipt-1.1.2-1.mdk92.i586.rpm
>
>this one is for Mandrake. You need to deinstall it and then download
>and install RPM build for SuSE.

If one is born blind, no way to help him

Thanks and sorry for the noise

Erich

THINK
P=FCntenstrasse 39
8143 Stallikon
mailto:erich.titl@...
PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16

Is there a source for debian files?  I have looked and not found any. Debian
testing/unstable is still 1.12. 

 

henryg

On Jun 29, 2004, at 6:51 AM, Henry Gunter wrote:

> Is there a source for debian files? =A0I have looked and not found =
any.=20
> Debian testing/unstable is still 1.12.
>

I don't know. You may ask Debian package maintainer, Jeremy Bouse.

--vk

Is there any plans of native pre/post install scripts for iptables
in fwb-2.0, as long as I can use custom install script its ok but......
Is there other solution for distributed firewall management,
exept lufs (http://lufs.sf.net) that I use, but it's not portable 
(imagine win2k management station)??  

GUI REQ: undo buton or/and versioning in xxx.fw files e.g fw$VERSION.fw
uploded to firewall allowing easy return to last known good config. 
Policy guard "don't cut these stations from management", even 
that this have to be incorporated into compilers, or better 
default object "management station" ??

P.S As far as the policy and the library files are xml,
is there any ongoing effort for web based GUI?
 

Kostadin Karaivanov 
Senior System Administrator 
phone:          +359 2 98592062
mobile:         +359 888 436681
e-mail:  k.karaivanov at minfin dot bg

On Jun 29, 2004, at 9:51 AM, <larry@...> wrote:

> Is there any plans of native pre/post install scripts for iptables
> in fwb-2.0, as long as I can use custom install script its ok but...

yes, it is on the list but won't make it to 2.0

> ...
> Is there other solution for distributed firewall management,
> exept lufs (http://lufs.sf.net) that I use, but it's not portable
> (imagine win2k management station)??
>

not sure what you mean. 2.0 works on windows 2000 and XP (as well as 
Macintosh) and uses ssh to talk to the firewall. It can be used for 
remote firewall management already.


> GUI REQ: undo buton or/and versioning in xxx.fw files e.g fw$VERSION.fw

undo is hard to implement but is on the list.

Versioning is currently possible with 2.0 because it has built-in RCS. 
You can document your changes in RCS, you can always roll back or 
create a branch.


> uploded to firewall allowing easy return to last known good config.
> Policy guard "don't cut these stations from management", even
> that this have to be incorporated into compilers, or better
> default object "management station" ??
>

hmm, may be. Please file a feature request so it won't fall through 
cracks.


> P.S As far as the policy and the library files are xml,
> is there any ongoing effort for web based GUI?
>

no, and there won't be. Running web server on the firewall creates too 
many problems.

--vk

hi, =A0=0A=0Awhile running configure step with the fwbuilder-2.0.4=0Ain fed=
ora core 2 resulted in this error=0A=0Achecking build system type... i686-r=
edhat-linux-gnu=0Achecking host system type... i686-redhat-linux-gnu=0Achec=
king target system type... i686-redhat-linux-gnu=0A./configure: line 1437: =
./VERSION: No such file or directory=0A=0AI had same error with Libfwbuilde=
r-2.0.4,=0A=0Achecking build system type... i686-pc-linux-gnu=0Achecking ho=
st system type... i686-pc-linux-gnu=0Achecking target system type... i686-p=
c-linux-gnu=0Achecking for a BSD-compatible install... /usr/bin/install -c=
=0A./configure: line 1475: ./VERSION: No such file or directory

On Dec 23, 2004, at 5:57 PM, nirmal kumar wrote:

>  hi,=A0
>
>  while running configure step with the fwbuilder-2.0.4
>  in fedora core 2 resulted in this error
>
>  checking build system type... i686-redhat-linux-gnu
>  checking host system type... i686-redhat-linux-gnu
>  checking target system type... i686-redhat-linux-gnu
>  ./configure: line 1437: ./VERSION: No such file or directory
>
>  I had same error with Libfwbuilder-2.0.4,
>
>  checking build system type... i686-pc-linux-gnu
>  checking host system type... i686-pc-linux-gnu
>  checking target system type... i686-pc-linux-gnu
>  checking for a BSD-compatible install... /usr/bin/install -c
>  ./configure: line 1475: ./VERSION: No such file or directory
>

looks like your source tree is incomplete; file VERSION is included in=20=

the .tar.gz archive of both modules.

--vk

I have been trying out the Win32 build of FWbuilder 2.6 on WindowsXP and
have noticed two issues.
 
1) Unfortunately, in the window used to add a firewall, the SNMP discovery
functionality is greyed out and doesn't work.
It does seem to work OK with Linux and BSD ports.....
 
2) The PDF user guide documentation seems to refer to a different (older)
version of the software.    Is there one which relates to 2.0.x?
 
thanks
 
 
 
.andy