[sane-devel] iptables and saned network scanner

Jelle de Jong jelledejong at powercraft.nl
Tue Sep 23 21:57:34 UTC 2008

Julien BLACHE wrote:
> Jelle de Jong <jelledejong at powercraft.nl> wrote:
> Hi,
>> I am trying to build a saned network scanner. I figured out a lot of
>> things on my own, but got stuck on the required secure iptable rules.
> You need connection tracking for the SANE network protocol as provided
> by CONFIG_NF_CONNTRACK_SANE in recent 2.6 kernels.
> JB.

Thank you Julien for you quick reply,

I changed my kernel to a stock debian lenny kernel that support the
conntrack sane modules.

I updated my firewall configuration, but I still got the message the
ports are being blocked. I included more information as the mail attachment.

How can I get the saned network scanner securely working?

All help is appreciated.

Kind regards,


-------------- next part --------------
A non-text attachment was scrubbed...
Name: iptables.log
Type: text/x-log
Size: 7161 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/sane-devel/attachments/20080923/d12ef592/attachment-0001.bin 

More information about the sane-devel mailing list