** Reply to note from Ian Smith <[EMAIL PROTECTED]> Wed, 25 Feb 2004 06:41:08 +1100
(EST)
> ... still dribbling in I see. Yawn. But they're being denied ok here.
But it is not so here! And also someone else reported the same problem...
> Try just 'deny log ip from 127.0.0.0/8 to any' (and
In message <[EMAIL PROTECTED]>, you wrote:
>
>On Mon, 23 Feb 2004, Ronald F. Guilmette wrote:
>
>> Given a socket which has been properly created, opened, and then bound
>> to some port and the special INADDR_ANY ``wildcard'' address, I need to
>> be able to them programatically find all of the I
On Tue, 24 Feb 2004, Andrea Venturoli wrote:
> 4.8-RELEASE-p15:
ipfw1?
> In /var/log/all.log I get a lot of:
>
> snort: [1:528:4] BAD-TRAFFIC loopback traffic [Classification:
> Potentially Bad Traffic] [Priority: 2]: {TCP}
> 127.0.0.1:80 -> xx.xx.xx.xx:1055
>
> (src port is always 80,
** Reply to note from Barney Wolff <[EMAIL PROTECTED]> Tue, 24 Feb 2004 12:30:23 -0500
>> IMHO opinion wrong packets are arriving
>> from the upstream router (for which it
>> would be useless to ask for a fix),
> Your first three rules, before anything else, should be:
> allow ip from any to an
On Tue, Feb 24, 2004 at 05:11:22PM -0500, Andrea Venturoli wrote:
> IMHO opinion wrong packets are arriving from the upstream router (for which it would
> be useless to ask for a fix),
Your first three rules, before anything else, should be:
allow ip from any to any via lo0
deny log logamount 100
Please stop flooding. :)
RTFM -> man ifconfig ; man route
you CAN'T change your NIC's ip whithough deleteing your default route.
why's that?
well... route add default 192.168.0.1
when you add default gw it must be reachable on your network.
when you change ip, you have to add ne w route because yo
Hello.
4.8-RELEASE-p15:
In /var/log/all.log I get a lot of:
snort: [1:528:4] BAD-TRAFFIC loopback traffic [Classification: Potentially Bad
Traffic] [Priority: 2]: {TCP}
127.0.0.1:80 -> xx.xx.xx.xx:1055
(src port is always 80, dst port changes, xx.xx.xx.xx is my tun0 IP.)
ifconfig -a gives:
On Tue, 24 Feb 2004, Andre Rein wrote:
> > >> # ifconfig rl0 $ip (where ip can be also 192.168.100.1), my
> > >> default route is deleted, cut off server for my net.
> > >>
> >
> > SDS> Say you wanted to change from 192.168.100.1/24 to 10.0.0.1/24
> > SDS> With default gateway changed from 192.168
On Tue, 24 Feb 2004, Andrew Riabtsev wrote:
>
> >> # ifconfig rl0 $ip (where ip can be also 192.168.100.1), my
> >> default route is deleted, cut off server for my net.
> >>
>
> SDS> Say you wanted to change from 192.168.100.1/24 to 10.0.0.1/24
> SDS> With default gateway changed from 192.168.100.
>> # ifconfig rl0 $ip (where ip can be also 192.168.100.1), my
>> default route is deleted, cut off server for my net.
>>
SDS> Say you wanted to change from 192.168.100.1/24 to 10.0.0.1/24
SDS> With default gateway changed from 192.168.100.254 to 10.0.0.254
SDS> ifconfig rl0 inet 10.0.0.1/24 a
On Tue, 24 Feb 2004 15:23:07 +0100
Sten Daniel Sørsdal <[EMAIL PROTECTED]> wrote:
>
> > # ifconfig rl0 $ip (where ip can be also 192.168.100.1), my
> > default route is deleted, cut off server for my net.
> >
>
> Say you wanted to change from 192.168.100.1/24 to 10.0.0.1/24
> With default gate
On Tue, Feb 24, 2004 at 04:59:24PM +0200, [EMAIL PROTECTED] wrote:
v> > trafd itself is very buggy. I'd better do not trust
v> > its data. Use ipcad, ipacct or ng_ipacct. trafd'd bugginess was discussed a
v> > lot in different russian-speaking mailinglists.
v>
v> Can you please be more specific?
On Tue, Feb 24, 2004 at 05:47:43PM +0300, Gleb Smirnoff wrote:
> Dear Andre,
>
> On Tue, Feb 24, 2004 at 03:42:38PM +0100, Andre Rein wrote:
> A> I'm running two different accounting programs at the firewall (ipcad &
> A> trafd) and it looks like that trafd doesn't account the whole traffic,
> A
Dear Andre,
On Tue, Feb 24, 2004 at 03:42:38PM +0100, Andre Rein wrote:
A> I'm running two different accounting programs at the firewall (ipcad &
A> trafd) and it looks like that trafd doesn't account the whole traffic,
A> because the sum of the individual tcp/udp/icmp traffic doesn't match the
Hi ML,
I'm running two different accounting programs at the firewall (ipcad &
trafd) and it looks like that trafd doesn't account the whole traffic,
because the sum of the individual tcp/udp/icmp traffic doesn't match the
ipcad accounting.
There are differences in between 0-50 MB a day. One time
> # ifconfig rl0 $ip (where ip can be also 192.168.100.1), my
> default route is deleted, cut off server for my net.
>
Say you wanted to change from 192.168.100.1/24 to 10.0.0.1/24
With default gateway changed from 192.168.100.254 to 10.0.0.254
ifconfig rl0 inet 10.0.0.1/24 alias
route change
On Tue, 24 Feb 2004, C.L. Lai [ALAN] wrote:
>
> i m not the only one... google says
> but there still isn't a solution.
>
> the problem is, i m using a pcmcia-pci bridge (plx pci9052) w/ a wireless
> pcmcia card(prism2.5)
> together w/ fbsd5.2rc2-sparc64's if_wi driver
> right after the module l
Gleb Smirnoff wrote:
>
> On Tue, Feb 24, 2004 at 01:47:16PM +0100, Andre Oppermann wrote:
> A> > A> > A> Maybe you do some nasty things to rt here?
> A> > A> >
> A> > A> > Really, I don't :) Exact code is given at end of the mail.
> A> > A>
> A> > A> You indeed do some nasty things.
> A> >
> A> >
On Tue, Feb 24, 2004 at 01:47:16PM +0100, Andre Oppermann wrote:
A> > A> > A> Maybe you do some nasty things to rt here?
A> > A> >
A> > A> > Really, I don't :) Exact code is given at end of the mail.
A> > A>
A> > A> You indeed do some nasty things.
A> >
A> > Please point me at 'em. I'm only readin
Gleb Smirnoff wrote:
> A> Use the macro RTFREE() instead of rtfree(), it will take care of some
> A> locking issues.
>
> This should be present in manpage, too.
Yes, Sam and I did some heavy lifting in the network and routing code
in the past few month. Unfortunatly we seem to have neglected to
Gleb Smirnoff wrote:
>
> Dear Andre,
>
> first, thanks for your feedback.
>
> On Tue, Feb 24, 2004 at 11:14:59AM +0100, Andre Oppermann wrote:
> A> Most of the time, if you don't need a cloned route allocated, you can
> A> just use rtalloc_ign(&ro, RTF_CLONING) to just get a reference to the
On Tue, Feb 24, 2004 at 01:20:18PM +0100, Andre Oppermann wrote:
A> > Thanks for this hint. So if using rtalloc_ign() I do not need to call rtfree()?
A> You still have to call rtfree() to decrement the refcount of the rtentry.
Thanks.
A> > A> Maybe you do some nasty things to rt here?
A> >
A> >
Andre,
I can provide you with any additional information,
since I have crashdump saved. I can dig into the problem myself
if you give me some pointers where to look at.
On Tue, Feb 24, 2004 at 11:14:59AM +0100, Andre Oppermann wrote:
A> Gleb Smirnoff wrote:
A> >
A> > Dear sirs,
A> >
A> >
Hi,
this is my configuration:
rl0: flags=8843 mtu 1500
options=8
inet 192.168.100.1 netmask 0xff00 broadcast 192.168.100.255
ether 00:30:84:9e:9d:26
media: Ethernet autoselect (100baseTX )
status: active
and this is my default route
default
I'm sorry, my mistake, seems like they are not reinjected on my test
system - they are acceped :-(
I'll continue to dig in the evening and post the results closer to local
night...
BlackSir
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of Gleb Sm
Dear Andre,
first, thanks for your feedback.
On Tue, Feb 24, 2004 at 11:14:59AM +0100, Andre Oppermann wrote:
A> Most of the time, if you don't need a cloned route allocated, you can
A> just use rtalloc_ign(&ro, RTF_CLONING) to just get a reference to the
A> existing rtentry. Not allocating
Gleb Smirnoff wrote:
>
> Dear sirs,
>
> please take a look at the following problem. I've been
> successfully using the following code on STABLE and 5.1-RELEASE:
>
> struct route ro;
> struct sockaddr_in *sin;
>
> bzero((caddr_t)&ro, sizeof(ro));
> sin = (str
On Tue, Feb 24, 2004 at 10:46:44AM +0300, Vasenin Alexander aka BlackSir wrote:
V> > I'd be glad if you show me your current netgraph setup script. Surely
V> > I can reproduce it myself, but live example would be better than
V> > imaginary.
V>
V> Here it is(latest version - 'echotee'):
Thanks for
On Tue, 24 Feb 2004, Petri Helenius wrote:
> Julian Elischer wrote:
>
> >
> >
> >
> >please remeber this next time someone tries to have it deleted from the
> >system :-)
> >
> >
> >
> I tried to google for such a discussion but fortunately couldn´t find
> any. Why somebody would want to t
Dear sirs,
please take a look at the following problem. I've been
successfully using the following code on STABLE and 5.1-RELEASE:
struct route ro;
struct sockaddr_in *sin;
bzero((caddr_t)&ro, sizeof(ro));
sin = (struct sockaddr_in *)&ro.ro_dst;
sin->s
30 matches
Mail list logo
