Graziano wrote: > Hello > > I have my shorewall log full of these > > Jan 15 02:11:52 hostname kernel: Shorewall:rfc1918:DROP:IN=eth0 OUT= > MAC=ff:ff:ff:ff:ff:ff:00:e0:81:30:44:81:08:00 SRC=192.168.63.2 > DST=255.255.255.255 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=14102 PROTO=UDP > SPT=20060 DPT=623 LEN=20 > > I wish to allow 192.168.63.2 to remove these droppings . How to do that > ? I can see a blacklist files but I cannot see a whitelist file > I suppose I have to write something on rule , but I am not sure . > > Anyone can tell me how to do that ?
The 'rfc1918' in the message indicates that this packet is being dropped
because the source IP address (192.168.63.2) is reserved by RFC 1918 and you
have the 'norfc1918' interface option specified on the incoming interface
(eth0) in /etc/shorewall/interfaces.
To "whitelist" just that IP address with respect to 'norfc1918' filtration,
you must:
a) Copy /usr/share/shorewall/rfc1918 to /etc/shorewall/rfc1918
b) Edit /etc/shorewall/rfc1918 and add this as the *first* entry:
192.168.63.2 RETURN
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
