- 13 Posts
- 20 Comments
SpongeB0B@programming.devOPto Linux@lemmy.ml•Forward packets Wireguard to local subnet, with Nftables. [ solved ]English1·3 months agoHi, Thank to all of you.
I made a test environment with the following.
- Machine A: 192.168.Y.1
- Machine B: 192.168.Y.2
- Machine C: 192.168.Y.3
The goal is to send a ping A to B, B forward to C
So
ping -4c 1 192.168.y.2
from A, should ping B fw CI’ve set the following rule in /etc/nftables.conf
table ip Tip { chain prerouting { type nat hook prerouting priority dstnat; policy accept; iif "eth0" ip protocol icmp dnat to 192.168.y.3 } chain postrouting { type nat hook postrouting priority 100; policy accept; ip saddr 192.168.y.3 masquerade } }
but is not working :'(
I see B receive the package
preroute: IN=eth0 OUT= MAC=▒▒ SRC=192.168.y.1 DST=192.168.y.2 LEN=84 TOS=0x00 PREC=0x00 TTL=64 ID=21398 DF PROTO=ICMP TYPE=8 CODE=0 ID=17950 SEQ=1
but it seem C receive nothing…
Any ideas ?
As I want the system to be quite ( not sending data ) I was suspected the
output
hook to be the one. what are you suggesting ?
SpongeB0B@programming.devOPto Linux@lemmy.ml•Why my nftables do not block DHCP ?English1·3 months agoObviously, but I’m anyway wondering why it doesn’t blocking like it should
I hope nftables do not let other pass like this…
SpongeB0B@programming.devOPto Linux@lemmy.ml•boot on LUKS encrypted drive ( initramfs Vs initrd ) ?English1·4 months agoThank you very much all, for your inputs !
I’ve did
root: file /boot/broadcom/initrd.gz initrd.gz: Zstandard compressed data .... root: unmkinitramfs /boot/broadcom/initrd.gz Extracted/ # data where extracted to Extracted/ # but I go few error like: # cpio: cannot link usr/sbin/vconfig to usr/sbin/watchdog: Operation not permitted
tree -Fan -L 2 Extracted
Extracted// |-- conf/ | |-- arch.conf* | |-- conf.d/ | `-- initramfs.conf* |-- etc/ | |-- fstab* | |-- ld.so.cache* | |-- ld.so.conf* | |-- ld.so.conf.d/ | |-- modprobe.d/ | `-- udev/ |-- init* |-- run/ |-- scripts/ | |-- functions* | |-- init-bottom/ | |-- init-top/ | |-- local* | |-- local-bottom/ | |-- local-premount/ | `-- nfs* `-- usr/ |-- bin/ |-- lib/ `-- sbin/
So it tend to confirm that even if the file is named initrd.gz it’s actually an
initramfs
method… ( damn this is so misleading )So I guess I can follow preparing-linux from the guide and overwrite the initrd.gz ?
SpongeB0B@programming.devOPto Linux@lemmy.ml•I cannot enable `HAVE_KPROBES_ON_FTRACE` - Kernel compileEnglish1·4 months agoThanks @SteveTech@programming.dev
I suppose the file
linux/arch/Kconfig
is the base the menuconfig to know which option is available ? right ?Thanks.
SpongeB0B@programming.devOPto Linux@lemmy.ml•I cannot enable `HAVE_KPROBES_ON_FTRACE` - Kernel compileEnglish1·4 months agoThanks, how can we verify this ?
SpongeB0B@programming.devOPto Linux@lemmy.ml•Boot on LUKS drive ( Rapsberry pi 4 )English1·5 months agoI’m using Devuan ( systemd free ! ) :)
SpongeB0B@programming.devOPto Linux@lemmy.ml•Boot on LUKS drive ( Rapsberry pi 4 )English11·5 months agoI believe my initramfs do not support luks encryption, but the link of @DrDystopia@lemy.lol might work… 🤞
SpongeB0B@programming.devOPto Linux@lemmy.ml•Boot on LUKS drive ( Rapsberry pi 4 )English1·5 months agoThanks @DrDystopia@lemy.lol ! indeed https://github.com/gitbls/sdm/blob/master/Docs/Disk-Encryption.md#the-sdm-cryptconfig-script seem what I need. I’ll try
SpongeB0B@programming.devOPto Linux@lemmy.ml•How install a package/program with all the dependencies tree to an offline devices ?English1·5 months agoohh ! great ! I’ll see if I manage to install it on Devuan Thanks.
SpongeB0B@programming.devOPto Linux@lemmy.ml•How install a package/program with all the dependencies tree to an offline devices ?English2·5 months ago🤩 Woo I didn’t know
nix
. It seem a better way to handle package !!!
But so if I have alreadyapt
that handle packages, is it compatible to use both on the same system !?Nix stores all packages in isolation from each other; as a result there are no /bin, /sbin, /lib or /usr directories and all packages are kept in /nix/store instead.
SpongeB0B@programming.devOPto Linux@lemmy.ml•How install a package/program with all the dependencies tree to an offline devices ?English1·5 months agoYes, but it’s not reliable. because even if you use a bare linux vm to download the packages and dependency, you never know if the online will have already a dependence that the offline system do not have.
no, the only way is to force the dw of the already downloaded package.
SpongeB0B@programming.devOPto Linux@lemmy.ml•How install a package/program with all the dependencies tree to an offline devices ?English1·5 months agoThank you very much @connaisseur@feddit.org
I have tried
apt-get -o Dir::Cache::archives="/to/path" install --download-only apt-offline
But it downloaded only the .deb of apt-offline and not all the dependence tree. Most probably because this machine have them already.
now, remain to force to download also all the dependency tree even if already installed…
SpongeB0B@programming.devOPto Linux@lemmy.ml•How install a package/program with all the dependencies tree to an offline devices ?English2·5 months agoindeed
.appimage
are an amazing thing as they do not require any special runtime or installation process !
I guess I will have to do my own.appimage
of software that do not provide them
SpongeB0B@programming.devOPto Android@lemmy.world•Where submit a feature suggestion for Android ?English1·8 months agoThank you @gerbercj@lemmy.world sadly it’s hosted on google … :/ https://issuetracker.google.com
If I post here on lemmy, me feature request somebody would be kind to submit to google ?
Thanks.
SpongeB0B@programming.devOPto Android@lemmy.world•Where submit a feature suggestion for Android ?English2·8 months agoit’s related to the GPS fix. So which is it ?
AppImage !
- Open format? Yes
- Free format? Yes
- Fully Contained Single Executable Support . Like an exe file for Windows systems Yes (the only one)
- App Size** The lowest** !
https://en.wikipedia.org/wiki/AppImage
Matrix
https://www.fosslinux.com/42410/snap-vs-flatpak-vs-appimage-know-the-differences-which-is-better.htm
https://phoenixnap.com/kb/flatpak-vs-snap-vs-appimage \
SpongeB0B@programming.devOPto Linux@lemmy.ml•Elevate privileges between Python program ( and Inter-process_communication )English2·11 months agoThank you very much @taaz
So you say 2 but with
unix socket
so it the same as my proposal number 3 ? no ?I’ll check
capabilities
SpongeB0B@programming.devOPto Linux@lemmy.ml•Elevate privileges between Python program ( and Inter-process_communication )English3·11 months agoindeed I need it to be scriptable.
SOLVED
The following works !
I guess one of my others rules was blocking