LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   How to allow websites in apf? (https://www.linuxquestions.org/questions/linux-software-2/how-to-allow-websites-in-apf-4175447028/)

hearthstone 01-24-2013 07:39 AM

How to allow websites in apf?
 
I would like to add http://www.srf.ch/radio-srf-4-news/player to allow.host.rules, but this address is impossible to convert to IP address (I tried http://www.find-ip-address.org/dns-lookup.php )--I got 208.67.222.222#53, put it on the allow.host.rules, but it doesn't seem to work.

There many websites that do not load--what port should I add to where?

Any advice?

Thanks, Hearthstone.

unSpawn 01-25-2013 09:39 PM

Quote:

Originally Posted by hearthstone (Post 4876764)
I would like to add http://www.srf.ch/radio-srf-4-news/player to allow.host.rules, but this address is impossible to convert to IP address (I tried http://www.find-ip-address.org/dns-lookup.php )--I got 208.67.222.222#53, put it on the allow.host.rules, but it doesn't seem to work.

Not impossible but the IP address you listed is one of Opendns.coms DNS servers.
To get the sites IP addresses try
Code:

host www.srf.ch
or
Code:

dig +nocomments +noquestion +nostats +nocmd -t A www.srf.ch

Quote:

Originally Posted by hearthstone (Post 4876764)
There many websites that do not load--what port should I add

This one uses Adobe Flash player so go for TCP/80.


Quote:

Originally Posted by hearthstone (Post 4876764)
Any advice?

What I posted in your other thread: "(..) working with Netfilter, simply put, requires understanding of iptables rules (..). Using APF is a choice you make. (..) if you use APF then you should consult the documentation it comes with first."

hearthstone 01-26-2013 06:15 PM

I installed guarddog. I found that I am "stealth" according to grc.com, but mutt doesn't work, http://www.srf.ch/radio-srf-4-news/player loads fully now, but still no sound ....

If I were an administrator, I would learn iptables, most likely, but I am but a user with a steep learning curve that gets steeper as I grow older, it would seem (call me lazy). I was using firestarter for years with no problem, only recently I noticed that I was not fully "stealth", and decided to try other front-ends for iptables. Once I figure out how to make everything I use, I'll be OK again--learning iptables would be a bit too much for me. Sorry.

Thanks, Hearthstone.

hearthstone 01-27-2013 11:01 AM

Latest update:

installed arno-iptables-firewall and only after about three dpkg-reconfigure rounds I am 100% stealth, according to grc.com ... AND--everything works!

What people like me (who are not administrators, just plain users, who learn only the which they really need) is an online Linux Super Computer that would access our PCs from the outside and fix everything that doesn't work. I would not mind contributing--as it is now, I do like to contribute, but there is a myriad of open source projects that I use worthy contributing to--and that I can hardly do. Just a thought ...

Thank you, Hearthstone.

P. S. I really would not like going back to Windows! I have to use them, now-and-then, and I really do prefer Linux (Debian)! H. S.


All times are GMT -5. The time now is 10:04 AM.