as always you are da man!
let me know when you update the ruleset below, also version 1.22 did not
have a commented out line for us PPPoP users :)
remember -
step 3 in echowall.conf
# uncomment for PPPoP use
#IF_EXT=ppp0
# comment out for PPPoP use
IF_EXT=eth0
Message: 7
Date: Thu, 5 Jul
-Original Message-
From: Kevin [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 04, 2001 11:51 AM
To: Leaf-User@Lists. Sourceforge. Net
Subject: Re: [Leaf-user] Help with DNS error logs on Eiger2Beta with
PPPoP Attn; Charles or Victor
HELP!!
I tried to search via Geocrawler for DNS
Kevin wrote:
Thanks Scott
I even fired up Echowall and still had my log files go out the roof
with
those dang packets
I will search my conf files and see where I can input those two filters
to
see if that stops the logging
archive
message
the List of IPs I block is here:
hanroute: -root-
#
Scott C. Best, 2001-07-04 11:52 -0700
The really annoying part is that...most LEAF users
aren't even running DNS on their firewall or on their LAN. Sure,
we all *use* DNS, as clients, but my impression it that LEAF
is used more to protect a LAN of users than a LAN of servers.
Maybe
Kevin:
Heya. Sorry for the late reply: as you can see in the
archives, there was a big discussion regarding unsolicited TCP
packets to port 53. Intentionally misconfigured packets, too,
ones set with both the SYN and ACK flags, as if your firewall
tried to initiate a connection. Your