Hello guys.
I wonder if any guru can help me in managing the connection rules in order
to keep the connectin towards my ISP just the time needed.
I use my box as a mailserver, a router and a fileserver thru SAMBA.
This is an excerpt from my actual configuration (slack 7):
It should keep up the connection for 2 minutes when sending/checking mail
and for ftp connections and 5 minutes to allow www calls not to bounce up
and down the connection. Please notice that analyzing the packets on the
active (but idle) link, I have LOTS of packets on the 224.0.0.x subnet (is
that multicast?): probably they keep the link up for about 10 minutes.
********************** LOG FILE *********************************
Jun 12 10:38:09 frankie diald[98]: Trigger: udp 38.8.50.2/53
192.168.0.1/1024
Jun 12 10:38:09 frankie diald[98]: Calling site 195.130.229.145
Jun 12 10:38:13 frankie diald[98]: Connected to site 195.130.229.145
Jun 12 10:38:13 frankie diald[98]: Running pppd (pid = 895).
Jun 12 10:38:13 frankie pppd[895]: pppd 2.3.10 started by root, uid 0
Jun 12 10:38:13 frankie pppd[895]: Using interface ppp0
Jun 12 10:38:13 frankie pppd[895]: Connect: ppp0 <--> /dev/ttyS1
Jun 12 10:38:13 frankie pppd[895]: Remote message: Welcome
Jun 12 10:38:13 frankie pppd[895]: local IP address 62.11.57.68
Jun 12 10:38:13 frankie pppd[895]: remote IP address 195.130.229.143
Jun 12 10:38:13 frankie diald[98]: New addresses: local 62.11.57.68,
remote 195.130.229.143, broadcast 0.0.0.0
Jun 12 10:38:13 frankie diald[98]: start ppp0: SIOCSIFMETRIC: Operation
not supported
Jun 12 10:38:13 frankie diald[98]: start ppp0: RTNETLINK answers: File
exists
Jun 12 10:38:14 frankie diald[98]: ip-up: fetchmail: background fetchmail
at 150 awakened.
Jun 12 10:38:14 frankie fetchmail[150]: Query status=2
Jun 12 10:38:20 frankie
postfix/smtp[911]: EC85214662D: to=<[EMAIL PROTECTED]>,
relay=smtp-in1.omnitel.it[194.20.64.13], delay=7, status=sent (250 Ok)
Jun 12 10:38:31 frankie fetchmail[150]: 1 message for pager at
pop3.mail.omnitel.it (779 octets).
Jun 12 10:38:31 frankie fetchmail[150]: reading message 1 of 1 (779
octets)
Jun 12 10:38:31 frankie postfix/smtpd[912]: connect from
localhost[127.0.0.1]
Jun 12 10:38:31 frankie
postfix/smtpd[912]: 744E01463C8: client=localhost[127.0.0.1]
Jun 12 10:38:31 frankie
postfix/cleanup[908]: 744E01463C8:
message-id=<[EMAIL PROTECTED]>
Jun 12 10:38:31 frankie
postfix/qmgr[149]: 744E01463C8: from=<[EMAIL PROTECTED]>, size=1071
(queue active)
Jun 12 10:38:31 frankie fetchmail[150]: flushed
Jun 12 10:38:31 frankie
postfix/local[913]: 744E01463C8: to=<[EMAIL PROTECTED]>,
relay=local, delay=0, status=sent (mailbox)
Jun 12 10:38:32 frankie postfix/smtpd[912]: disconnect from
localhost[127.0.0.1]
Jun 12 10:48:37 frankie diald[98]: Closing down idle link.
Jun 12 10:48:37 frankie diald[98]: start sl0: SIOCSIFMETRIC: Operation not
supported
Jun 12 10:48:38 frankie pppd[895]: Terminating on signal 2.
Jun 12 10:48:38 frankie pppd[895]: Connection terminated.
Jun 12 10:48:38 frankie pppd[895]: Connect time 10.5 minutes.
Jun 12 10:48:38 frankie pppd[895]: Sent 5223 bytes, received 8175 bytes.
Jun 12 10:48:38 frankie pppd[895]: Exit.
Jun 12 10:48:38 frankie diald[98]: Disconnected. Call duration 625
seconds.
Jun 12 10:48:38 frankie diald[98]: IP transmitted 4471 bytes and received
7149 bytes.
Jun 12 10:48:39 frankie diald[98]: Delaying 30 seconds before clear to
dial.
********************* CONFIG FILE *******************************
#/etc/diald.conf
ip-up /usr/sbin/diald_up
#diald_up sends a SMS via sendmail to my cellphone
ip-goingdown /usr/sbin/diald_going_down
#does nothing, but it is defined
ip-down /usr/sbin/diald_down
#does nothing, but it is defined
include /usr/lib/diald/standard.filter
accept tcp 15 tcp.syn
ignore tcp tcp.dest=tcp.domain
ignore tcp tcp.source=tcp.domain
accept tcp 5 ip.tot_len=40,tcp.syn
ignore tcp ip.tot_len=40,tcp.live
accept tcp 300 tcp.dest=tcp.www
accept tcp 300 tcp.source=tcp.www
keepup tcp 5 !tcp.live
ignore tcp !tcp.live
accept tcp 120 tcp.dest=tcp.ftp
accept tcp 120 tcp.source=tcp.ftp
accept tcp 120 tcp.dest=tcp.smtp
accept tcp 120 tcp.source=tcp.smtp
accept tcp 120 tcp.dest=tcp.pop-3
accept tcp 120 tcp.source=tcp.pop-3
#accept tcp 300 any
#disabilitato temporaneamente (link up 10 min!)
ignore udp udp.dest=udp.who
ignore udp udp.source=udp.who
ignore udp udp.dest=udp.route
ignore udp udp.source=udp.route
ignore udp udp.dest=udp.ntp
ignore udp udp.source=udp.ntp
ignore udp udp.dest=udp.timed
ignore udp udp.source=udp.timed
ignore udp udp.dest=udp.domain,udp.source=udp.domain
accept udp 30 udp.dest=udp.domain
accept udp 30 udp.source=udp.domain
ignore udp udp.source=udp.netbios-ns,udp.dest=udp.netbios-ns
accept udp 30 udp.dest=udp.netbios-ns
accept udp 30 udp.source=udp.netbios-ns
accept udp 120 tcp.dest=tcp.smtp
accept udp 120 tcp.source=tcp.smtp
accept udp 120 tcp.dest=tcp.pop-3
accept udp 120 tcp.source=tcp.pop-3
accept udp 120 any
accept any 30 any
Sorry for long posting. Thanks in advance.
Alessandro
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
