-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mircea Ciocan wrote: > Well, the situation is like this: > > 1) In my first message about that I specified clearly that my > internal network was using 10.0.0.0/8 and the interface parameters was > givenby DHCP.
But we don't know the subnet the original poster is using. > 2) I'm not dissing lisa without reason, if a program ( that is > installed by default, BTW) start fast sweep-pinging and filling the > default arp table that has only 1024 entryes by default ( that means > every network with a mask less then /22 is exposed) conducting to > basicly cutting the network access to that machine. it has SERIOUS > problems IMHO. OK, but this should not have bearing on a router device (such as a Linksys), since such a device should not be configured (except under exceptional circumstances) for anything larger than /24. It should also not die if a machine inside it's network pings all the hosts on the network (otherwise it is already vulnerable to a DOS, and would be killed by something like blaster as well ...). > 3) Now on a practical side, either lisa will have to allow the > temporary arp entryes some time to expire by reducing the stroke of ping > sweep or it has to check the arp table and if is filled over a certain > percent to postpone the next burst of pings. It seems lisa does not respect some of the settings the documentation claims it supports (such as MaxPingsAtOnce). But I will adjust the script to not use pings by default anymore (it seems to work well enough now - much better than on 9.1 - using only nmblookup, but users will not see machines that run only ssh or ftp and not an SMB server). To the original poster, if you have lisa installed, you can see if lisa has any effect by running 'service lisa stop' twice, and then unplugging and replugging the router. If it occurs again (without rebooting the Mandrake box), then it's not lisa. Regards, Buchan - -- |--------------Another happy Mandrake Club member--------------| Buchan Milne Mechanical Engineer, Network Manager Cellphone * Work +27 82 472 2231 * +27 21 8828820x202 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/YGb1rJK6UGDSBKcRAmvFAJ9j6Uly3PvZkSkr7lkumuvrXkI+oACfSDVT RtV+gv2VvbIsYgvdGGGUWCo= =j48F -----END PGP SIGNATURE----- ***************************************************************** Please click on http://www.cae.co.za/disclaimer.htm to read our e-mail disclaimer or send an e-mail to [EMAIL PROTECTED] for a copy. *****************************************************************
