Mike Mestnik wrote:
Assuming you want timeout counter reset by outgoing traffic but not by incoming:--- Stephan Zimmermann <[EMAIL PROTECTED]> wrote:
Hi all,
i am setting up an gateway with little firewalling ang dial on demand.
Problem is, when sasser & co. send their packages to my trashbin, the
"sasser & co."? Local users trying to get out or remote servers responding to old/dead connections?
connection does _NOT_ terminate, the timout is re-triggered. How can I ignor the Dropped Packages for the DoD timeout?
This was disscussed on the list a while back. Turns out there is an RTFM on how to setup pppd to ignore incomming data.
There is a ppp(d ) configuration setting called 'active-filter' & it seems as though you may want that set as a simple 'outbound'. (You won't find it with pppconfig - look for the config file your pppd is using - it may not be /etc/ppp/options if you're running Debian.)
It also appears that you will need to have your kernel configured with ppp_filter (under Network Devices ?)
(I'm working on that right now, but I can't get a new kernel to boot without panic!)
Bruce
