Here is the log in the chain of events that leads to my 3c905 crashing. It looks like someone is trying to get into the system. What is the best counterattack (and keep my system up!). How to disable promiscious mode? Or should that even be done? ==========23 lines of var/log/syslog ================================= Feb 16 11:05:43 cerberus kernel: Packet log: input REJECT eth1 PROTO=2 207.168.169.69:65535 224.1.0.38:65535 L=32 S=0x00 I=4608 F=0x0000 T=1 O=0x00000494 Feb 16 11:17:17 cerberus kernel: Packet log: input REJECT eth1 PROTO=17 207.168.169.24:42 224.0.1.24:42 L=47 S=0x00 I=62279 F=0x0000 T=6 Feb 16 11:19:48 cerberus kernel: Packet log: input REJECT eth1 PROTO=17 207.168.169.18:42 224.0.1.24:42 L=47 S=0x00 I=43320 F=0x0000 T=6 Feb 16 11:25:10 cerberus kernel: Swansea University Computer Society IPX 0.34 for NET3.035 Feb 16 11:25:10 cerberus kernel: IPX Portions Copyright (c) 1995 Caldera, Inc. Feb 16 11:25:10 cerberus kernel: Appletalk 0.17 for Linux NET3.035 Feb 16 11:31:33 cerberus kernel: Swansea University Computer Society IPX 0.34 for NET3.035 Feb 16 11:31:33 cerberus kernel: IPX Portions Copyright (c) 1995 Caldera, Inc. Feb 16 11:31:33 cerberus kernel: Appletalk 0.17 for Linux NET3.035 Feb 16 11:38:23 cerberus kernel: Swansea University Computer Society IPX 0.34 for NET3.035 Feb 16 11:38:23 cerberus kernel: IPX Portions Copyright (c) 1995 Caldera, Inc. Feb 16 11:38:24 cerberus kernel: Appletalk 0.17 for Linux NET3.035 Feb 16 11:42:23 cerberus kernel: Swansea University Computer Society IPX 0.34 for NET3.035 Feb 16 11:42:23 cerberus kernel: IPX Portions Copyright (c) 1995 Caldera, Inc. Feb 16 11:42:23 cerberus kernel: Appletalk 0.17 for Linux NET3.035 Feb 16 11:52:31 cerberus kernel: eth1: Setting promiscuous mode. Feb 16 11:53:15 cerberus kernel: ARP: arp called for own IP address Feb 16 11:53:43 cerberus kernel: eth1: Setting promiscuous mode. Feb 16 12:01:27 cerberus kernel: Swansea University Computer Society IPX 0.34 for NET3.035 Feb 16 12:01:27 cerberus kernel: IPX Portions Copyright (c) 1995 Caldera, Inc. Feb 16 12:01:27 cerberus kernel: Appletalk 0.17 for Linux NET3.035 Feb 16 12:01:31 cerberus kernel: Packet log: input REJECT lo PROTO=6 207.168.169.119:1116 209.0.55.14:41260 L=40 S=0x00 I=645 F=0x0000 T=64 Feb 16 12:01:31 cerberus kernel: Packet log: input REJECT lo PROTO=6 207.168.169.119:1115 209.0.55.14:21 L=40 S=0x00 I=646 F=0x0000 T=64 ======================================================================== Thanks, Scott -- Scott Smyth, VP Product Development, West Coast (408) 437-7794 [EMAIL PROTECTED]
Is it possible to set the NIC in promiscious mode from outside (i.e., no root password, etc). If not, what are other circumstances that enable promicious mode (i.e., tcpdump, etc) in the NIC. Using 3c59x driver with 3c905. Using dhcp to set IP and later promiscious mode enabled (I am not sure why) and system crashes with NIC reporting something about ring buffer (sorry, lost that info). Thanks, Scott -- Scott Smyth, VP Product Development, West Coast (408) 437-7794 [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to [EMAIL PROTECTED]
