Has there been any progress in a GUI for MoBlock?
Has there been any progress in a GUI for MoBlock?
Nope. You'll be better of just creating a "launcher" and tick "run in terminal". The "command should be;
If you're a bit adventurous, you could try something like this;Code:tail -f /var/log/moblock.log
This last code block is not fool proof, since i'm _not_ running ubuntu ATM. So i don't know if this still applies. (You should note however, that moblock takes some time to register it's "pid" so don't hammer this right away after booting up...)Code:[ -n "$(pidof moblock)" ] && tail -f /var/log/moblock.log || echo "moblock is not running..."
Now, if you do this in kde (create a launcher, that is), you can have it placed in the system tray if you want. yay!
Last edited by pelle.k; May 22nd, 2007 at 09:27 PM.
- "though It seems that I know that I know, what I would like to see Is the I that sees me, when I know that I know that I know" / Alan Watts
Hello, I followed your feisty instructions. Everything seems to be going fine & I was wondering how to make moblock startup when I startup my ubuntu install. Thanks.
tip: I also use a good hosts file, http://www.mvps.org/winhelp2002/hosts.htm
I used the following instructions to get moblock working on my Feisty 64bit install:
sudo dpkg -i libnfnetlink0_0.0.14-1.1_amd64.deb
sudo dpkg -i libnfnetlink-dev_0.0.14-1.1_amd64.deb
sudo dpkg -i libnetfilter-queue_0.0.11-1.1_amd64.deb
sudo dpkg -i libnetfilter-queue-dev_0.0.11-1.1_amd64.deb
sudo dpkg -i moblock-nfq_0.8-10_amd64.deb
moblock works, as far as I can tell, but I've got a broken package now. Synaptic manager tells me that libnetfilter-queue-dev is broken, but when I try to reinstall it, it tells me I have to install libnetfilter-queue1 as well. Fine by me, but I get the following error:
E: /var/cache/apt/archives/libnetfilter-queue1_0.0.12-1_amd64.deb: trying to overwrite `/usr/lib/libnetfilter_queue_libipq.so.1.0.0', which is also in package libnetfilter-queue
I'm very new to Ubuntu, so I'm afraid to proceed on my own here...
isnt this basicly what moblock does; sets the behavior of the firewall? I thought it was simply a script to use the well researched blacklists maintained for peerguardian with netfilter firewall, and to update them automatically?
when it comes to classifying packages coming to your host and dealing with them accordingly , firewalls do this 'for living', and are very sophisticated in this, with a lot of possibilities.
Last edited by aryah; May 25th, 2007 at 02:39 AM.
@aryah: Yes, what moblock does is basicly the same as inserting iptables rules for DROPing every range in the blacklists. It just does the dropping via the iptables rule QUEUE since this is faster for such a long list of IP ranges.
And yes, other firewalls in Linux also use the rich functionality of iptables (but in most cases not only based on the IP as moblock does).
I didn't see this issue addressed before but I could have missed it scanning the posts.
I have a problem with moblock-nfq when using apache and ssh. when its installed, web requests made to the server moblock is running on take ~7 seconds to reply instead of being near instant on my local network. The lag also occurs after putting my username in when I ssh to the machine. It takes ~7 seconds for the password prompt to pop back up. I'm a 4th year cs student and ip tables are one of those things I've heard of but never worked with so I'm at a bit of a loss in figuring out where to start.
I don't have any firewall or really anything other than a basic kubuntu LAMP setup. Fresh install a week or two ago.
First thing I did was try and add http to the whitelist but there was no effect:
Code:#!/bin/sh # # MoBlock.sh - MoBlock start script # --------------------------------- ACTIVATE_CHAINS=1 WHITE_TCP_IN="http" WHITE_UDP_IN="http" WHITE_TCP_OUT="http" WHITE_UDP_OUT="http" WHITE_TCP_FORWARD="http https" WHITE_UDP_FORWARD="http https"
And here's iptables -L:
I would be very grateful of any help and I'm curious if anyone else uses torrentflux when moblock. I just rebuilt a server and things were working with a 8 or 9 month old version and older version of kubuntu before the harddrive expired.Code:Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT 0 -- anywhere anywhere MOBLOCK_IN 0 -- anywhere anywhere state NEW Chain FORWARD (policy ACCEPT) target prot opt source destination MOBLOCK_FW 0 -- anywhere anywhere state NEW Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT 0 -- anywhere anywhere MOBLOCK_OUT 0 -- anywhere anywhere state NEW Chain MOBLOCK_FW (1 references) target prot opt source destination ACCEPT udp -- anywhere anywhere udp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:www NFQUEUE 0 -- anywhere anywhere NFQUEUE num 0 Chain MOBLOCK_IN (1 references) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:www NFQUEUE 0 -- anywhere anywhere NFQUEUE num 0 Chain MOBLOCK_OUT (1 references) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:www NFQUEUE 0 -- anywhere anywhere NFQUEUE num 0
I am running Moblock on a xubuntu (Edgy Eft) system and it's running okay so far. But I can't connect to jabber servers while Moblock is running.
This ip address is for jabber.ccc.de and I tried to unblock the ip address in /etc/cron.daily/moblock-nfq but it did not work. Does somebody here know how to unblock that specific ip address?Code:Blocked OUT: Chaos Computer Club,hits: 1,DST: 220.127.116.11 Blocked OUT: Chaos Computer Club,hits: 2,DST: 18.104.22.168 Blocked OUT: Chaos Computer Club,hits: 3,DST: 22.214.171.124 Blocked OUT: Chaos Computer Club,hits: 4,DST: 126.96.36.199
That was a quick one, I just needed to unblock the jabber ports in /etc/moblock/MoBlock-nfq.sh.