Re: pooh.ASARian.org security run output (lots of wrong arpmessages)

[John Murphy]

Fuzzy [EMAIL PROTECTED] wrote:

Is there any way to convince the kernel not to log these
incorrect arp messages?

currently we have...
net.link.ether.inet.log_arp_wrong_iface: 1

Is there a different sysctl or variable for rc.conf
to stop it from logging incorrect information?

Indeed there is but only in 5.0 or greater I believe.  It's called:

net.link.ether.inet.log_arp_movements

-- 
HTH
John.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: pooh.ASARian.org security run output (lots of wrong arpmessages)

[Lowell Gilbert]

John Murphy [EMAIL PROTECTED] writes:

 Fuzzy [EMAIL PROTECTED] wrote:
 
 Is there any way to convince the kernel not to log these
 incorrect arp messages?
 
 currently we have...
 net.link.ether.inet.log_arp_wrong_iface: 1
 
 Is there a different sysctl or variable for rc.conf
 to stop it from logging incorrect information?
 
 Indeed there is but only in 5.0 or greater I believe.  It's called:
 
 net.link.ether.inet.log_arp_movements

Actually, both of those are available in -STABLE.
However, it's usually better to fix the source of the address changes,
if it's under your control.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]