> I've got a rogue 10.x.x.x/32 server polling my Dachstein firewall > twice every 16 seconds for a dhcp server and a port 80 scan every > 2 minutes. I can't find any info in the archives and sites about > "dropping" (not logging) these packets when they are deny'ed. > The packets (webtrash) I am looking to stop logging are being > denied by rules 10, 12, and 41. What is the syntax or change > I need to make to quit logging these. > > Other than this, Dachstein is perfect, already surviving two DoS > attacks without a reboot to date.
There is a SILENT_DENY setting in network.conf. Extract details of the packets you don't want logged from your existing log files, and add them to SILENT_DENY to stop logging them. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
