Re: [Leaf-user] silent_deny not working

2002-02-12 Thread Michael D. Schleif
Doug Sampson wrote: > > > > # cat /etc/ipchains.input ^^^ You create this file, put that line in it and make sure that this line is *NOT* commented in /etc/network.conf: IPCH_IN=/etc/ipchains.input These rather innocuous files can be very powerful tools in D

RE: [Leaf-user] silent_deny not working

2002-02-12 Thread Doug Sampson
> > # cat /etc/ipchains.input > > $IPCH -I input -j DENY -p all -s 0/0 -d 255.255.255.255 -i > $EXTERN_IF > > > > Exactly what does the ipchain statement say? Exactly what > does it deny? > > Obviously I'm not at all familiar with ipchaining... and I > want to understand > > it fully before I i

Re: [Leaf-user] silent_deny not working

2002-02-12 Thread Michael D. Schleif
Doug Sampson wrote: > > > > > I maintain that this is the cleanest solution: > > > > > > > > I've copied your proposed solution here for reference. > > # cat /etc/ipchains.input > $IPCH -I input -j DENY -p all -s 0/0 -d 255.

RE: [Leaf-user] silent_deny not working

2002-02-12 Thread Doug Sampson
> > # SILENT_DENY="ProtoNumber_SourceAddress/Netmask_DestinationPort" > Try: SILENT_DENY="udp_10.8.238.1_68" >-or- >SILENT_DENY="17_10.8.238.1_68" >-or drop the destination port altogether- >SILENT_DENY="all_10.8.238.1" > > The last field i

RE: [Leaf-user] silent_deny not working

2002-02-12 Thread Doug Sampson
> > I maintain that this is the cleanest solution: > > > I've copied your proposed solution here for reference. # cat /etc/ipchains.input $IPCH -I input -j DENY -p all -s 0/0 -d 255.255.255.255 -i $EXTERN_IF Exactly what doe

Re: [Leaf-user] silent_deny not working

2002-02-12 Thread guitarlynn
On Tuesday 12 February 2002 18:33, Doug Sampson wrote: > Awhile ago was a post to this newsgroup about repeat entries in the > message logs by a DHCP server as follows: > > Feb 12 16:18:00 CX269409-C kernel: Packet log: input DENY eth0 > PROTO=17 10.8.238.1:67 255.255.255.255:68 L=328 S=0x00 I=308

Re: [Leaf-user] silent_deny not working

2002-02-12 Thread Michael D. Schleif
Doug Sampson wrote: > > Awhile ago was a post to this newsgroup about repeat entries in the message > logs by a DHCP server as follows: > > Feb 12 16:18:00 CX269409-C kernel: Packet log: input DENY eth0 PROTO=17 > 10.8.238.1:67 255.255.255.255:68 L=328 S=0x00 I=30881 F=0x T=255 (#10) > > I

[Leaf-user] silent_deny not working

2002-02-12 Thread Doug Sampson
Awhile ago was a post to this newsgroup about repeat entries in the message logs by a DHCP server as follows: Feb 12 16:18:00 CX269409-C kernel: Packet log: input DENY eth0 PROTO=17 10.8.238.1:67 255.255.255.255:68 L=328 S=0x00 I=30881 F=0x T=255 (#10) I'm on a Cox Communication network and