[ILUG] ipchains query...
ger.donohue at teleca.ie
ger.donohue at teleca.ie
Tue Nov 6 10:50:11 GMT 2001
> Kevin
>
These are not errors. You are using the -l switch which will log any
traffic on a ipchain rule when a match is meet. This will be logged via
printk (kernel logging)
The tcpwrappers utility may be a better way of disabling access to
services or could be used with ipchains.
Regards Ger
> using ipchains how can i block off listening ports on ppp0? i'm getting
> errors like the following, which is caused by blocking off some ephemeral
> ports on the ppp0 interface. what i really want to do is stop local
> daemons from listening on those ports. i can do that by configuring
> each daemon on that box, but by doing it via ipchains (or something else)
> there's less to check (and less to go wrong).
>
> Nov 6 01:00:54 inle kernel: Packet log: input DENY ppp0 PROTO=6 216.239.35.101:80
> 194.125.171.22:2937 L=60 S=0x00 I=5844 F=0x4000 T=49 (#16)
> Nov 6 01:00:56 inle kernel: Packet log: input DENY ppp0 PROTO=6 216.239.35.101:80
> 194.125.171.22:2936 L=60 S=0x00 I=45401 F=0x4000 T=49 (#16)
> Nov 6 01:00:56 inle kernel: Packet log: input DENY ppp0 PROTO=6 216.239.35.101:80
> 194.125.171.22:2934 L=60 S=0x00 I=3135 F=0x4000 T=49 (#16)
>
> kevin
>
More information about the ILUG
mailing list