Hello List.
I looked into the ip monitor command (see ip(8) man page e.g.,
http://www.die.net/doc/linux/man/man8/ip.8.html) as apparently the only
way to monitor route activity.
I have a problem where a LEAF firewall or other device may be silently
discarding packets.
But when I issue on Beri
Rick
this is on a WRAP Bering 1.x
Using username "root".
Authenticating with public key "Jupiter Version 2"
Bering gatekeeper 2.4.20-grsec #6 Fri Sep 12 10:42:33 CEST 2003
Type in help if you are really lost
gatekeeper: -root-
# ip monitor route
10.23.7.13 dev eth1 scope link
Deleted 10.23.7
, Richard
Cc: LEAF Users
Subject: Re: [leaf-user] Logging route table actions
Rick
this is on a WRAP Bering 1.x
Using username "root".
Authenticating with public key "Jupiter Version 2"
Bering gatekeeper 2.4.20-grsec #6 Fri Sep 12 10:42:33 CEST 2003
Type in help if you are rea
Tibbs, Richard wrote:
Hrmmm...
All I get after an hour is
firewall: -root-
# ip monitor route
Do you really change something to the routing table? I got the output by
manually adding and deleting a route.
cheers
Erich
---
This SF.Net em
office fw
Any suggestions?
TIA
Rick.
-Original Message-
From: Erich Titl [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 02, 2005 6:59 PM
To: Tibbs, Richard
Cc: LEAF Users
Subject: Re: [leaf-user] Logging route table actions
Tibbs, Richard wrote:
> Hrmmm...
> All I
Tibbs, Richard wrote:
Oh, yes it does log route adds/deletes...
What I was hoping for was ip route table "verbosity", so that I could
see if and when bering was dropping packets silently.
Situation is this: I have a Bering 1.2 firewall in my office on campus
connected to the campus network. All
Message-
From: Erich Titl [mailto:[EMAIL PROTECTED]
Sent: Friday, June 03, 2005 11:50 AM
To: Tibbs, Richard
Cc: LEAF Users
Subject: Re: [leaf-user] Logging route table actions
Tibbs, Richard wrote:
> Oh, yes it does log route adds/deletes...
> What I was hoping for was ip route table &quo
Tibbs, Richard wrote:
Yes, the external iface was changed to a 190.x.x.x address (there is not
a norfc1918 on any iface in Shorewall... Turns out that is an unassigned
block.) with the lab gw routr as gateway.
Both IP addresses on the lab fw are static, and a single machine on
internal net has
EMAIL PROTECTED]
Sent: Friday, June 03, 2005 1:11 PM
To: Tibbs, Richard
Cc: LEAF Users
Subject: Re: [leaf-user] Logging route table actions
Tibbs, Richard wrote:
> Yes, the external iface was changed to a 190.x.x.x address (there is
not
> a norfc1918 on any iface in Shorewall... Turns out that is an
Tibbs, Richard wrote:
See other comments inline below.
Tried tcpdump on bering via the cmd
tcpdump -i eth0 icmp -q
try
tcpdump -n -i eth0 icmp
Erich
---
This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput
a proj
11.
Rick.
-Original Message-
From: Erich Titl [mailto:[EMAIL PROTECTED]
Sent: Friday, June 03, 2005 1:46 PM
To: Tibbs, Richard
Cc: LEAF Users
Subject: Re: [leaf-user] Logging route table actions
Tibbs, Richard wrote:
>
> See other comments inline below.
> Tried tcpdump on bering
11 matches
Mail list logo