Lynn:
Heya. Late suggestion: try either the echowall.lrp package,
or cutpaste from the end of the echowall.rules file inside of
that package. I built echowall for a 486 with only 16M of RAM
that firewalled me from a cable-modem environment. As you prolly
know, I had to reboot every week
hello lynn
it is the option -l which is responsible for the logging.
you can redefine a rule like this:
ipchains -R input 7 -s 10.0.0.0/8 -j DENY
this replaces rule nr. 7 on the input chain. (rule nr. 7 was _my_ rule to
deny traffic from 10.0.0.0/8 and log it, i used the above command to
I've got a rogue 10.x.x.x/32 server polling my Dachstein firewall
twice every 16 seconds for a dhcp server and a port 80 scan every
2 minutes. I can't find any info in the archives and sites about
dropping (not logging) these packets when they are deny'ed.
The packets (webtrash) I am looking
]; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] How not to log a deny'ed packet/ip address
I've got a rogue 10.x.x.x/32 server polling my Dachstein firewall
twice every 16 seconds for a dhcp server and a port 80 scan every
2 minutes. I can't find any info in the archives and sites about
dropping
Is this available in EigerStein2BETA.exe? I did not see this variable in
the network.conf file. Can I just add it?
You can, but it won't work :(
The SILENT_DENY variable was initially added as part of my extended scripts,
so if you install these, you can use SILENT_DENY...or you could just
On Thursday 29 November 2001 08:44, you wrote:
There is a SILENT_DENY setting in network.conf. Extract details of
the packets you don't want logged from your existing log files, and
add them to SILENT_DENY to stop logging them.
Charles Steinkuehler
That wonderful, I've been trying to get