NullNull
-
Posts
210 -
Joined
-
Last visited
-
Days Won
6
Posts posted by NullNull
-
-
Raspberry Pi 2 (Middle)
Alfa NHA (Access Point, Left)
Alfa 036H (Deauth, Right)
Anker 3 10.000 mah
Pelican Case 1040
Running Kali 1.1.0 amd64 (with autostart: hostapd, dnsmasq, nginx, php-fpm, vncserver, mdk3)
-
Yeap, Nodogsplash can't handle php :(.
So here is what i did! (using a mk4 after a clean flash)
1) save the default iptables configuration
(iptables-save > default_iptables.conf)
2) edit nodogsplash.conf to include only the gateway and users-to-router rules (allowing also 1471)
3) run nodogsplash and save it's iptables configuration (iptables-save > portal_iptables.conf)
4) stop nodogsplash
5) edit your dnsmasq for the 1.1.1.1 and run it.
6) change your web server port to 2050 and restart it.
7) aply the portal iptables (iptables-restore portal_iptables.conf)
8)You should be good to go ;)
I have made a script (because i love scipts ;) ) that does all this. I will post when i get back to my pineapple ;)
-
After some more testing i see that the captive portal notification will pop up on Android tablets (Nexus 9 on 5.0, Samsung Tab 4 on 4.4.2) and not on Android mobiles (Galaxy S4 on 4.4.2). Although when surfing the web all traffic gets redirected. (even clients3.google.com/generate_204). Only way to pop the browser on my galaxy S4 is "address=/#/1.1.1.1" along with nodogsplash. I will try to replicate the iptables nodogsplash creates. Sounds easy..
Sorry but i dont have any others devices for testing :P
NOTE: I deleted the previous post until i find something more stable!!!
-
i'm glad you figured it out ;) next days i will have some free time, i will test it and post the results :)
-
Are you referring to Android/iOS captive portal detection?you are right - but nodogsplash will appear whatever happens when joining the network - even if the user does nothing.
So let my get that straight :P
1) You are running dnsmasq with lets say "address=/#/8.8.8.8"
2) Then dnsspoof with "*" redirecting everything to 172.16.42.1
3) Then nodogsplash.
4) And finaly the iptables from the second post redirecting all port 80 and 53 traffic to 172.16.42.1
Am i correct?
-
Hi, yep, thanks, i will also give this a try (i will give your idea a try, no splasher but direct, but i assume, the browser will drop ssl connections and will not use default pages located in www when client forces ssl, because of hsts
yes. this will not redirect https or hsts but i think neither will nodogsplash...
-
yes and it is working every time ...did you actually test this with your own pineapple or did you just use theory?
As you can see here: https://forums.hak5.org/index.php?/topic/34663-nodogsplash/#entry257631 i did not said i managed nodogsplash to work with out internet connection. Actualy i said that none of the captive protal "managers" i used, worked with out internet connection. The above commands have nothing to do with nodogsplash. I dont even have it installed right now. I just placed a simple html file in the www folder and configured dnsmasq. Try searching the web for "dnsmasq captive portal" , "dnsmasq walled garden" "dnsmasq splash screen"if you managed nodogsplash WITHOUT internet connection - that would be something new - i found NO ONE (i googled a lot) who did the trick.....
-
i run out of ideas.....
-
Sorry for that..hu? there is no /etc/dhcp
You get the same 502 error on all your browsers and clients?
-
can you post the "cat /etc/dhcp" output?
EDIT: just saw your dnsmasq.conf, no opendns server there. :/
-
No need to run nodogspalsh with all that. reboot your pineapple and try it again.
Also before testing it clear you browsers cache.
-
hey johnsteiner, if you want just to serve a splash page ssh into your pineapple and try this:
/etc/init.d/dnsmasq stop cp /var/etc/dnsmasq.conf /tmp/dnsmasq.conf sed -i '/address=/a address=/#/172.16.42.1' /tmp/dnsmasq.conf /usr/sbin/dnsmasq -C /tmp/dnsmasq.conf iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1 iptables -t nat -A PREROUTING -p tcp --dport 53 -j DNAT --to-destination 172.16.42.1 iptables -t nat -A PREROUTING -p udp --dport 53 -j DNAT --to-destination 172.16.42.1
This will make dnsmasq to resolve all domains to your pineapple's IP (172.16.42.1) if not cached from your browser and redirect all port 80 and port 53 traffic to it.To undo
/etc/init.d/dnsmasq restart rm /tmp/dnsmasq.conf iptables -t nat -D PREROUTING -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1 iptables -t nat -D PREROUTING -p tcp --dport 53 -j DNAT --to-destination 172.16.42.1 iptables -t nat -D PREROUTING -p udp --dport 53 -j DNAT --to-destination 172.16.42.1
Note that every time you restart dnsmasq (/etc/init.d/dnsmasq restart) the dnsmasq.conf file at /var/etc/ gets re-written. -
dns spoof *.* to 172.16.42.1 and nodogsplash will workAh i see you already tried that. Just use the infusion lol it will configure nodogsplash automatically for you. You can always do it yourself but you might was to look at how EP configures it to get an idea
(to busy at the moment to post the code)
Thank you newbi. Trying to fix it with nodogsplash or any other captive portal manager didn't work for me. After a lot of search think dnsmasq and iptables is the way to do it.
address=/#/172.16.42.1
at the dnsmasq.conf
and
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1 iptables -t nat -A PREROUTING -p tcp --dport 53 -j DNAT --to-destination 172.16.42.1 iptables -t nat -A PREROUTING -p udp --dport 53 -j DNAT --to-destination 172.16.42.1
this might work but i need to test it.
-
This isn't really a question for the Pineapple and should be listed in the Questions thread IMHO
Sorry but i think it can be posted here too
Why not just use Evil Portal? Why would you go through the hassle of doing it manually when there is an infusion that will get you the same exact results?
Because thats me
You may be able to try chillispot instead. There was a thread recently that mentioned you could download that through opkg. That's one that normally comes on DD-WRT images for setting up captive portals.
Thank you, i saw that post but chillispot seems way to complicate to setup for something so simple..
-
Hello everyone,
I have create a very simple html which is the only page i want my clients to see. Like a captive portal but not intrested in giving them internet connection. I am having problems with nodogsplash which does not redirect any traffic when my pineapple is not connected to the internet. I know i can use "Evil Portal" but i am trying to make this manual. I also noticed that nodogsplash is at 0.9_beta9.9.9 but opkg brings 0.9_beta9.9.6 (not only pineapple, openwrt too)
- Does the pineapple have to be connected to the internet for nodogsplash to work?
- Is there a way to replicate the iptables rules nodogsplash creates?
- Is there any good alternative "captive portal manager" you can suggest?
My nodogsplash.conf
GatewayInterface br-lan
FirewallRuleSet authenticated-users {
FirewallRule allow tcp port 53
FirewallRule allow udp port 53
FirewallRule allow tcp port 80
FirewallRule allow tcp port 443
FirewallRule allow tcp port 22
}
FirewallRuleSet preauthenticated-users {
FirewallRule allow tcp port 53
FirewallRule allow udp port 53
}
FirewallRuleSet users-to-router {
FirewallRule allow udp port 53
FirewallRule allow tcp port 53
FirewallRule allow udp port 67
FirewallRule allow tcp port 22
FirewallRule allow tcp port 80
FirewallRule allow tcp port 443
FirewallRule allow tcp port 1471
FirewallRule allow tcp port 8080
}My /etc/config/dhcp
config 'dnsmasq'
option 'domainneeded' '1'
option 'boguspriv' '1'
option 'filterwin2k' '0'
option 'localise_queries' '1'
option 'rebind_protection' '1'
option 'rebind_localhost' '1'
option 'local' '/lan/'
option 'domain' 'lan'
option 'expandhosts' '1'
option 'nonegcache' '0'
option 'authoritative' '1'
option 'readethers' '1'
option 'leasefile' '/tmp/dhcp.leases'
option 'resolvfile' '/tmp/resolv.conf.auto'
config 'dhcp' 'lan'
option 'interface' 'lan'
option 'start' '100'
option 'limit' '150'
option 'leasetime' '12h'
option 'ignore' '0'
list 'dhcp_option' '3,172.16.42.42'
list 'dhcp_option' '3,172.16.42.1'
list 'dhcp_option' '6,172.16.42.1'
# list 'dhcp_option' '6,172.16.42.1,208.67.222.222'
#config 'dhcp' 'wan'
# option 'interface' 'wan'
# option 'ignore' '1'
# option 'start' '100'
# option 'limit' '150'
# option 'leasetime' '12h'
# list 'dhcp_option' '3,172.16.42.42'
# list 'dhcp_option' '6,172.16.42.1,8.8.8.8'
# list 'dhcp_option' '6,172.16.42.1,208.67.222.222'Running: nodogsplash -d 7 -f
root@Pineapple:~# nodogsplash -d 7 -f
[5][sat Feb 7 15:28:58 2015][7428](gateway.c:380) Reading and validating configuration file /etc/nodogsplash/nodogsplash.conf
[6][sat Feb 7 15:28:58 2015][7428](conf.c:657) Reading configuration file '/etc/nodogsplash/nodogsplash.conf'
[7][sat Feb 7 15:28:58 2015][7428](conf.c:693) Parsing option: GatewayInterface, arg: br-lan
[7][sat Feb 7 15:28:58 2015][7428](conf.c:693) Parsing option: FirewallRuleSet, arg: authenticated-users {
[7][sat Feb 7 15:28:58 2015][7428](conf.c:405) Parsing FirewallRuleSet authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 53 to 0.0.0.0/0 to FirewallRuleset authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow udp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow udp port 53 to 0.0.0.0/0 to FirewallRuleset authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 80]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 80 to 0.0.0.0/0 to FirewallRuleset authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 443]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 443 to 0.0.0.0/0 to FirewallRuleset authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 22]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 22 to 0.0.0.0/0 to FirewallRuleset authenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:461) FirewallRuleSet authenticated-users parsed.
[7][sat Feb 7 15:28:58 2015][7428](conf.c:693) Parsing option: FirewallRuleSet, arg: preauthenticated-users {
[7][sat Feb 7 15:28:58 2015][7428](conf.c:405) Parsing FirewallRuleSet preauthenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 53 to 0.0.0.0/0 to FirewallRuleset preauthenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow udp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow udp port 53 to 0.0.0.0/0 to FirewallRuleset preauthenticated-users
[7][sat Feb 7 15:28:58 2015][7428](conf.c:461) FirewallRuleSet preauthenticated-users parsed.
[7][sat Feb 7 15:28:58 2015][7428](conf.c:693) Parsing option: FirewallRuleSet, arg: users-to-router {
[7][sat Feb 7 15:28:58 2015][7428](conf.c:405) Parsing FirewallRuleSet users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow udp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow udp port 53 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 53]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 53 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow udp port 67]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow udp port 67 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 22]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 22 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 80]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 80 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 443]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 443 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 1471]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 1471 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:445) p1 = [FirewallRule]; p2 = [allow tcp port 8080]
[7][sat Feb 7 15:28:58 2015][7428](conf.c:570) Adding FirewallRule allow tcp port 8080 to 0.0.0.0/0 to FirewallRuleset users-to-router
[7][sat Feb 7 15:28:58 2015][7428](conf.c:461) FirewallRuleSet users-to-router parsed.
[6][sat Feb 7 15:28:58 2015][7428](conf.c:950) Done reading configuration file '/etc/nodogsplash/nodogsplash.conf'
[5][sat Feb 7 15:28:58 2015][7428](gateway.c:388) Initializing signal handlers
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:165) Setting SIGCHLD handler to sigchld_handler()
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:180) Setting SIGPIPE handler to SIG_IGN
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:187) Setting SIGTERM,SIGQUIT,SIGINT handlers to termination_handler()
[6][sat Feb 7 15:28:58 2015][7428](gateway.c:229) Setting started_time
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:239) Finding IP address of br-lan
[5][sat Feb 7 15:28:58 2015][7428](gateway.c:244) Detected gateway br-lan at 172.16.42.1
[5][sat Feb 7 15:28:58 2015][7428](gateway.c:252) Created web server on 172.16.42.1:2050
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:255) Setting web root: /etc/nodogsplash/htdocs
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:259) Setting images subdir: images
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:263) Setting pages subdir: pages
[7][sat Feb 7 15:28:58 2015][7428](gateway.c:267) Registering callbacks to web server
[6][sat Feb 7 15:28:58 2015][7428](firewall.c:151) Removing Firewall rules
[7][sat Feb 7 15:28:58 2015][7428](fw_iptables.c:591) Destroying our tc hooks
[7][sat Feb 7 15:28:58 2015][7428](tc.c:69) Executing command: tc qdisc del dev imq0 root
[7][sat Feb 7 15:28:58 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:58 2015][7428](util.c:118) Waiting for PID 7429 to exit
[7][sat Feb 7 15:28:58 2015][7428](util.c:132) Process PID 7429 exited normally, status 127
[7][sat Feb 7 15:28:58 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:58 2015][7428](tc.c:69) Executing command: tc qdisc del dev imq1 root
[7][sat Feb 7 15:28:58 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:58 2015][7428](util.c:118) Waiting for PID 7430 to exit
[7][sat Feb 7 15:28:58 2015][7428](util.c:132) Process PID 7430 exited normally, status 127
[7][sat Feb 7 15:28:58 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:58 2015][7428](tc.c:216) Executing command: ip link set imq0 down
[7][sat Feb 7 15:28:58 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:58 2015][7428](util.c:118) Waiting for PID 7431 to exit
[7][sat Feb 7 15:28:58 2015][7428](util.c:132) Process PID 7431 exited normally, status 127
[7][sat Feb 7 15:28:58 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:58 2015][7428](tc.c:219) Executing command: ip link set imq0 down
[7][sat Feb 7 15:28:58 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:58 2015][7428](util.c:118) Waiting for PID 7432 to exit
[7][sat Feb 7 15:28:58 2015][7428](util.c:132) Process PID 7432 exited normally, status 127
[7][sat Feb 7 15:28:58 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:58 2015][7428](fw_iptables.c:595) Destroying our iptables entries
[7][sat Feb 7 15:28:58 2015][7428](fw_iptables.c:602) Destroying chains in the MANGLE table
[7][sat Feb 7 15:28:58 2015][7428](fw_iptables.c:672) Checking all mention of ndsTRU from mangle.PREROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7433 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsBLK from mangle.PREROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7435 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsALW from mangle.PREROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7437 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsOUT from mangle.PREROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7439 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsINC from mangle.POSTROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7441 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -F ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7443 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7443 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -F ndsBLK
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7445 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7445 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -F ndsALW
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7447 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7447 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -F ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7449 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7449 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -F ndsINC
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7451 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7451 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -X ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7453 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7453 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -X ndsBLK
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7455 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7455 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -X ndsALW
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7457 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7457 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -X ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7459 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7459 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -X ndsINC
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7461 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7461 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:625) Destroying chains in the NAT table
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsOUT from nat.PREROUTING
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7463 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -F ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7465 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7465 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -X ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7467 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7467 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:636) Destroying chains in the FILTER table
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsRTR from filter.INPUT
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7469 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:672) Checking all mention of ndsNET from filter.FORWARD
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:28:59 2015][7428](gateway.c:100) SIGCHLD handler: waitpid(): No child exists now.
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -F ndsRTR
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7473 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7473 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -F ndsNET
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7475 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7475 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -F ndsAUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7477 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7477 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -F ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7479 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7479 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -F ndsTRT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7481 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7481 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -X ndsRTR
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7483 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7483 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -X ndsNET
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7485 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7485 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -X ndsAUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7487 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7487 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -X ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7489 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7489 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -X ndsTRT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7491 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7491 exited normally, status 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[5][sat Feb 7 15:28:59 2015][7428](gateway.c:278) Initializing firewall rules
[6][sat Feb 7 15:28:59 2015][7428](firewall.c:123) Creating ICMP socket
[6][sat Feb 7 15:28:59 2015][7428](firewall.c:133) Initializing Firewall
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:309) Locking config
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:309) Config locked
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:325) Unlocking config
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:325) Config unlocked
[6][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:103) Iptables mark Preauthenticated: 0x0
[6][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:106) Iptables mark Authenticated: 0x400
[6][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:109) Iptables mark Trusted: 0x200
[6][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:112) Iptables mark Blocked: 0x100
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -I PREROUTING 1 -j MARK --or-mark 0x100
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7493 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7493 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -D PREROUTING 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7495 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7495 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:125) Kernel supports --or-mark.
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -I FORWARD 1 -m mark --mark 0x100/0x700 -j REJECT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7497 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7497 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -D FORWARD 1
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7499 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7499 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:135) Kernel supports mark masking.
[6][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:142) Iptables mark op "--or-mark" and mark mask "/0x700".
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -N ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7501 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7501 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -N ndsBLK
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7503 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7503 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -N ndsINC
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7505 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7505 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -N ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7507 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7507 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -I PREROUTING 1 -i br-lan -s 0.0.0.0/0 -j ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7509 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7509 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -I PREROUTING 2 -i br-lan -s 0.0.0.0/0 -j ndsBLK
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7511 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7511 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -I PREROUTING 3 -i br-lan -s 0.0.0.0/0 -j ndsTRU
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7513 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7513 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t mangle -I POSTROUTING 1 -o br-lan -d 0.0.0.0/0 -j ndsINC
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7515 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7515 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -N ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7517 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7517 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -I PREROUTING -i br-lan -s 0.0.0.0/0 -j ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7519 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7519 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -m mark --mark 0x200/0x700 -j ACCEPT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7521 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7521 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -m mark --mark 0x400/0x700 -j ACCEPT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7523 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7523 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:249) Loading ruleset preauthenticated-users into table nat, chain ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:253) Loading rule "-t nat -A ndsOUT -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT" into table nat, chain ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7525 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7525 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:253) Loading rule "-t nat -A ndsOUT -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT" into table nat, chain ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7527 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7527 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:258) Ruleset preauthenticated-users loaded into table nat, chain ndsOUT
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1:2050
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7529 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7529 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t nat -A ndsOUT -j ACCEPT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7531 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7531 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -N ndsNET
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7533 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7533 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -N ndsRTR
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7535 to exit
[7][sat Feb 7 15:28:59 2015][7428](util.c:132) Process PID 7535 exited normally, status 0
[7][sat Feb 7 15:28:59 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:28:59 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -N ndsAUT
[7][sat Feb 7 15:28:59 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:28:59 2015][7428](util.c:118) Waiting for PID 7537 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7537 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -N ndsTRU
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7539 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7539 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -N ndsTRT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7541 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7541 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -I INPUT -i br-lan -s 0.0.0.0/0 -j ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7543 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7543 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -m mark --mark 0x100/0x700 -j DROP
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7545 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7545 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -m state --state INVALID -j DROP
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7547 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7547 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -m state --state RELATED,ESTABLISHED -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7549 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7549 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -p tcp --tcp-flags SYN SYN \! --tcp-option 2 -j DROP
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7551 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7551 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -p tcp --dport 2050 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7553 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7553 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -m mark --mark 0x200/0x700 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7555 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7555 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:249) Loading ruleset users-to-router into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7557 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7557 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7559 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7559 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p udp --dport 67 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p udp --dport 67 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7561 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7561 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 22 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 22 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7563 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7563 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 80 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 80 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7565 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7565 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 443 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 443 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7567 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7567 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 1471 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 1471 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7569 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7569 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 8080 -j ACCEPT" into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -d 0.0.0.0/0 -p tcp --dport 8080 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7571 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7571 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:258) Ruleset users-to-router loaded into table filter, chain ndsRTR
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsRTR -j REJECT --reject-with icmp-port-unreachable
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7573 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7573 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -I FORWARD -i br-lan -s 0.0.0.0/0 -j ndsNET
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7575 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7575 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -m mark --mark 0x100/0x700 -j DROP
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7577 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7577 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -m state --state INVALID -j DROP
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7579 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7579 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7581 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7581 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -m mark --mark 0x200/0x700 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7583 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7583 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -m mark --mark 0x400/0x700 -j ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7585 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7585 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -m state --state RELATED,ESTABLISHED -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7605 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7605 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:249) Loading ruleset authenticated-users into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT" into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7607 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7607 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsAUT -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT" into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7609 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7609 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 80 -j ACCEPT" into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 80 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7611 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7611 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 443 -j ACCEPT" into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 443 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7613 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7613 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 22 -j ACCEPT" into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -d 0.0.0.0/0 -p tcp --dport 22 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7615 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7615 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:258) Ruleset authenticated-users loaded into table filter, chain ndsAUT
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsAUT -j REJECT --reject-with icmp-port-unreachable
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7617 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7617 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:249) Loading ruleset preauthenticated-users into table filter, chain ndsNET
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsNET -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT" into table filter, chain ndsNET
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -d 0.0.0.0/0 -p tcp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7619 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7619 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:253) Loading rule "-t filter -A ndsNET -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT" into table filter, chain ndsNET
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -d 0.0.0.0/0 -p udp --dport 53 -j ACCEPT
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7621 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7621 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:258) Ruleset preauthenticated-users loaded into table filter, chain ndsNET
[7][sat Feb 7 15:29:00 2015][7428](fw_iptables.c:167) Executing command: iptables -t filter -A ndsNET -j REJECT --reject-with icmp-port-unreachable
[7][sat Feb 7 15:29:00 2015][7428](util.c:98) Setting default SIGCHLD handler SIG_DFL
[7][sat Feb 7 15:29:00 2015][7428](util.c:118) Waiting for PID 7623 to exit
[7][sat Feb 7 15:29:00 2015][7428](util.c:132) Process PID 7623 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](util.c:141) Restoring previous SIGCHLD handler
[5][sat Feb 7 15:29:00 2015][7428](gateway.c:305) Waiting for connections
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:88) Starting ndsctl.
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:92) Socket name: /tmp/ndsctl.sock
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:101) Creating socket
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:104) Got server socket 6
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:109) Filling sockaddr_un
[7][sat Feb 7 15:29:00 2015][7428](ndsctl_thread.c:115) Binding socket (/tmp/ndsctl.sock) (16)
[7][sat Feb 7 15:29:00 2015][7428](auth.c:67) Running fw_refresh_client_list()
[7][sat Feb 7 15:29:00 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:29:00 2015][7428](gateway.c:100) SIGCHLD handler: waitpid(): No child exists now.
[7][sat Feb 7 15:29:00 2015][7428](gateway.c:93) SIGCHLD handler: Trying to reap a child
[7][sat Feb 7 15:29:00 2015][7428](gateway.c:108) SIGCHLD handler: Process PID 7629 exited normally, status 0
[7][sat Feb 7 15:29:00 2015][7428](firewall.c:173) Locking client list
[7][sat Feb 7 15:29:00 2015][7428](firewall.c:173) Client list locked
[7][sat Feb 7 15:29:00 2015][7428](firewall.c:226) Unlocking client list
[7][sat Feb 7 15:29:00 2015][7428](firewall.c:226) Client list unlockedand it stays like this even when clients connect.
As an alternative i tried dnsspoof and iptables (one at a time and both together)
My spooofhost.conf
172.16.42.1 *
dnsspoof -i br-lan -f spoofhost.conf iptables -t nat -A PREROUTING -p udp --dport 53 -j DNAT --to-destination 172.16.42.1
and
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1
In this case it redirects traffic to 172.16.42.1 but if pineapple is not connected to the internet Android and iPhone Devices cannot betect the "captive portal" and pop the pseudo browser.
-
Thank you for your interest guys! V 1.1 is out at the main post.
-
Hello everyone.
For the past few months i am using my pineapple as a kind of access point repeater with the help of "Wifi Manager" infusion (thanks Whistle Master!!! ). Wlan1 is connected to my home network on client mode and wlan0 is running an open, internet sharing, wireless netowork (from boot). The connection between my home network and my pineapple is really bad so every now and then the connection drops. I wrote this script to check for internet and network connection and if its down try to get it back on.
Maybe some of you will find it useful.EDIT: I have done some changes after seeing you guys liked it so here is 1.1 Version
Change Log:
- Fixed some output issues
- Checks and brings up the device if down
- Makes more checks regarding the usb inteface issues (i am having)
- Countdown for the next check
- Much better chances of grabing an ip if connection is lost
Unfortunately i dont have the time to bring this into an CLI infusion or the time to support one. Also i own a mark IV pineapple running 2.8.1 which i dont want to update to 3.0.0 ( sorry seb :P ) so developing a CLI infusion wont be easy. If anyone wants to bring it in an infusion is welcome! :)
#!/bin/bash #check.sh v-1.1 #By KiatoGS sleep_time="30" #Seconds between every check device="wlan1" #The device you are using for client mode gateway="192.168.1.1" #Your " home's " network gateway for network connection check clear echo echo echo -e " +---------------------------------------+" echo -e " This script will run a loop every \e[1;32m$sleep_time\e[0m " echo -e " seconds to check your client mode" echo -e " connection on \e[1;32m$device\e[0m pinging" echo -e " \e[1;32m$gateway\e[0m and \e[1;32m8.8.8.8\e[0m" echo -e " +---------------------------------------+" echo echo while : do sleeptime=$sleep_time echo -n "[-] Checking for Internet connection..." ping -q -w 6 -c 1 8.8.8.8 > /dev/null 2>&1 if [[ $? -eq 0 ]]; then echo -e "\t [\e[1;32mOK\e[0m]" else echo -e "\t [\e[1;31mFAILED\e[0m]" echo -n "[-] Checking for Network connection..." ping -q -w 6 -c 1 $gateway > /dev/null 2>&1 if [[ $? -eq 0 ]]; then echo -e "\t [\e[1;32mOK\e[0m]" echo -e "[-] Check your \" home's \" internet connection \e[1;31m!\e[0m" #Nothing we can do :/ else echo -e "\t [\e[1;31mFAILED\e[0m]" echo -n "[-] Checking for $device device status..." #When i am using a usb wireless card for client mode there are times #that the usb card just disappears from my pineapple. Only a reboot #brings it back on. if [[ -z $(ifconfig | grep "$device") ]] || [[ -z $(iwconfig 2>&1 | grep "$device") ]] ; then echo -e "\t [\e[1;31mDOWN\e[0m]" echo -ne "[-] Bringing it back \"up\"..." ifconfig $device up > /dev/null 2>&1 if [[ -z $(ifconfig | grep "$device") ]] ; then echo -e "\t \t [\e[1;31mFAILED\e[0m]" else echo -e "\t \t [\e[1;32mOK\e[0m]" fi if [[ -z $(iwconfig 2>&1 | grep "$device") ]] ; then echo -e "[-] Sorry but $device is not responding... \t [\e[1;31mREBOOTING\e[0m]" sleep 5 reboot exit fi else echo -e "\t [\e[1;32mUP\e[0m]" fi echo -n "[-] Realising ip if any..." kill `ps -ax | grep udhcp | grep "$device" | awk {'print $1'}` 2> /dev/null echo -e "\t \t [\e[1;32mOK\e[0m]" echo -n "[-] Scanning APs..." iwlist "$device" scan > /dev/null 2>&1 #At all my tests i had better results executing iwlist twice. sleep 1 #Try to comment out the second one and tell my your opinion. iwlist "$device" scan > /dev/null 2>&1 #The loop must run an extra time (so basicaly iwlist is running again) echo -e "\t \t \t [\e[1;32mOK\e[0m]" #in order udhcpc to get an ip. I cannot understand why :/ echo -n "[-] Requesting ip..." udhcpc -R -n -i "$device" > /dev/null 2>&1 if [[ -n $(ifconfig "$device" | grep "inet addr:") ]] && [[ -n $(route | grep "$device") ]] ; then sleep 1 echo -e "\t \t \t [\e[1;32mOK\e[0m]" else echo -e "\t \t \t [\e[1;31mFAILED\e[0m]" fi sleeptime="1" fi fi if [[ $sleeptime != "1" ]] ; then #Just a small countdown while [ $sleeptime -ge 1 ] do echo -ne "[-] Checking again in: \t \t \t [$sleeptime] \r" sleep 1 sleeptime=$[$sleeptime-1] done fi done -
the present wifi manager for mark4 does.
-
It's 14:25 on the west coast - everything is ready, just a bit chaotic because the warehouse party starts in two hours.
Will probably still hit the servers today, with a release post tomorrow.
Best regards,
Sebkinne
sorry about that
-
Saturday if everything goes well :)
I guess that something didn't...
-
That's odd, some of the "taks" (as Darren call them) are missing. Try:
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 172.16.42.1
And of course change the "-A" to "-D" to drop the rule.
oups :P
-
undo by
iptables -t nat -D PREROUTING -p tcp -dport 80 -j DNAT to-destination 172.16.42.1
-
ssh into your pineapple and type:
iptables -t nat -A PREROUTING -p tcp -dport 80 -j DNAT to-destination 172.16.42.1
This will redirect all trafic (from port 80) to 172.16.42.1
-
Ive been waiting for a solution to this for over 6 months.
With manufacturor restrictions getting tighter and still no current hack/workaround. Don't hold your breath, go buy an amp.
have you ever worked with one of these? what about the noise?
Sup?
in WiFi Pineapple Mark V
Posted
HAHAHAHAHAHAHAHAHA
:lol: 
:lol: 
:lol: 