On Tue, Jul 6, 2010 at 11:06 PM, Steven W. Orr wrote:
> I have my firewall set to drop any more than three ICMP
> packets per minute.
Yes, you're paranoid.
> 47185 firewall events but they all came from one macaddr
Which would be the router which forwarded the packets to you.
> I checked w
First, a confession: I don't know much about firewall logs. I usually
just glance at 'em and see if anything fun's going on. But... that being
said, something smells fishy about your report. I don't see how you could
know the MAC of an attacker, unless they were on a local subnet. MAC
addresses
I just had a minor outage over here with RCN at home on my server. After a
mere bag O shells that cost me an hour, they actually got me back up and
running. During the bring up, I noticed that my firewall in linux was
registering that it was dropping ping packets. (I have my firewall set to drop
an