I'm trying to test a LEAF Bering firewall, with just two interfaces at
present. I'm not sure if I have a routing problem, a DNS problem, or a
shorewall problem. I downloaded a tcpdump.lrp and the libp, but these
were for a 2.2 kernel series. Tcpdump works, but it appears to accumulate
a lot
I'm trying to test a LEAF Bering firewall, with just two interfaces at
present. I'm not sure if I have a routing problem, a DNS problem, or
a
shorewall problem. I downloaded a tcpdump.lrp and the libp, but these
were for a 2.2 kernel series. Tcpdump works, but it appears to
accumulate
a
Here I have some more information about this crazy problem.
* If the LEAF box is in notworking state ping didnt work (no output)
/var/log/messages
Tons of:
Aug 10 06:44:38 firewall kernel: Packet log: input DENY eth0 PROTO=17
10.195.80.1:67 255.255.255.255:68 L=416 S=0x00 I=28122 F=0x
On Sat, 10 Aug 2002, David Smead wrote:
I'm trying to test a LEAF Bering firewall, with just two interfaces at
present. I'm not sure if I have a routing problem, a DNS problem, or a
shorewall problem. I downloaded a tcpdump.lrp and the libp, but these
were for a 2.2 kernel series.
Here I have some more information about this crazy problem.
* If the LEAF box is in notworking state ping didnt work (no output)
/var/log/messages
Tons of:
Aug 10 06:44:38 firewall kernel: Packet log: input DENY eth0 PROTO=17
10.195.80.1:67 255.255.255.255:68 L=416 S=0x00 I=28122
Memory seems not to be the problem (Its a P90 with 40MB Ram)
Filesystem 1k-blocks Used Available Use% Mounted on
/dev/ram0 6076 2978 3098 49% /
/dev/ram1 4049 2023 2026 50% /var/log
total:used:free: shared:
List added back in...comments in-line.
ok good fix
no more ipchains errors when reloading the net configs
no more denys from the internal nets
I now only get denys from the outside trying to access the DMZ.
And I can't access the DMZ (nothing gets denied. just no response
back).
Now,
