guitarlynn wrote: > > On Wednesday 06 February 2002 21:03, Michael D. Schleif wrote: > > [ snip ] > > > > This is a faq and should be listed somewhere. However, here are a > > couple previous threads and their solutions: > > > I have a LEAF command help FAQ at: > http://sourceforge.net/docman/display_doc.php?docid=9267&group_id=13751 > > Under the Dachstein specific heading at SILENT_DENY: > > ########## beginning on snip #################################### > The "SILENT_DENY" Option > > # To set the SILENT_DENY (no logging) option to Dachstein Firewall. > # SILENT_DENY="ProtoNumber_SourceAddress/Netmask_DestinationPort" > # Netmask and DestinationPort are optional > *note*-the netmask and destination port# are optional > > ProtoNumber will take "tcp", "udp", and "all" for options. > examples: > SILENT_DENY="tcp_a.b.c.d/255.255.255.255" (for all ports tcp-only) > SILENT_DENY="all_a.b.c.d_80 (for single port) > ############# end of snip ################################### > > >From this you can use: > SILENT_DENY="17_10.117.160.1_68" > > to filter this traffic.
Provided that only one (1) server ever broadcasts this way, then this is acceptable. However, previous consensus was that there is *never* any reason to log broadcasts to destination 255.255.255.255 -- so, perhaps, a better solution is that suggested in <http://sourceforge.net/mailarchive/message.php?msg_id=686657> TIMTOWTDI -- Best Regards, mds mds resource 888.250.3987 Dare to fix things before they break . . . Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
