On Tue, 2003-10-14 at 21:51, arif wrote: > > This evening, I noticed the following in my log files: > > Oct 14 23:02:57 firewall Shorewall:all2all:REJECT: IN= OUT=eth0 > MAC=00:50:fc:59:16:5b:00:20:ea:1f:0f:fc:08:00 SRC=209.98.2.1 > DST=209.98.111.101 LEN=92 TOS=00 PREC=0x00 TTL=64 ID=38485 PROTO=ICMP > TYPE=0 CODE=0 ID=256 SEQ=43473
... I had a similar (but different) episode occur yesterday and have not yet had time to diagnose the cause. To keep my logs from flooding, I have copied /etc/shorewall/common.def to /etc/shorewall/common and modified the latter by adding the following: ############################################################################ # Ping -- Toss spurious echo-reply packets. # run_iptables -A common -p icmp --icmp-type echo-reply -j DROP -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
