At least you are thinking about security. You would be suprised how
many people don't even think about it! Don't feel bad.
Jeff
Karl Kopper wrote:
Arrghhh.... sorry for the panic... my stupid mistake. I hang my head in
shame.
--Karl
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Steven
Wagner
Sent: Tuesday, September 17, 2002 3:15 PM
To: [email protected]
Subject: Re: [Ganglia-general] Ganglia is not secure. (WOLF!)
Cripes, way to freak out the developers. I hope you never see "The
Adventures of Pluto Nash" on an airplane, otherwise you might loudly
declare that you just saw a bomb. :P
This is normal behavior - 239.2.11.71 is a multicast address. Ganglia's
entire metric transmission system is based around sending data via IP
multicasting. In all likelihood, the traffic isn't even making it past
your firewall.
You are of course free to set up iptables or other equipment on your
network to inspect and/or block multicast packets as you see fit.
Please consult the following HOWTO or Google for more information.
http://www.tldp.org/HOWTO/Multicast-HOWTO-1.html#ss1.1
Karl Kopper wrote:
Hi All,
I'm new to ganglia and new to the list, but I've loaded gmond
on my systems
and found the following:
# netstat -apn | grep gmond
tcp 0 0 0.0.0.0:8649 0.0.0.0:*
LISTEN
665/gmond
udp 0 0 172.24.150.93:32769 239.2.11.71:8649
ESTABLISHED 665/gmond
udp 0 0 0.0.0.0:8649 0.0.0.0:*
665/gmond
I have nothing to do with 239.2.11.71 why would they have an established
connection through my firewall to my servers?
--Karl
