Put these in your diald.conf file and it will not
dial for these requests or keep the link up.
Another real good thing to do is to run a forwarding DNS server
on your Linux box. That way it will only dial for requests that have
a . in them and not for the local machine name requests.
#ignore those pesky netbios-ns requests
ignore tcp tcp.source=tcp.netbios-ns
ignore tcp tcp.dest=tcp.netbios-ns
ignore tcp tcp.dest=tcp.netbios-dgm
ignore tcp tcp.source=tcp.netbios-dgm
ignore tcp tcp.dest=tcp.netbios-ssn
ignore tcp tcp.source=tcp.netbios-ssn
# Do the same for netbios-ns broadcasts
ignore udp udp.dest=udp.netbios-ns
ignore udp udp.source=udp.netbios-ns
ignore udp udp.dest=udp.netbios-dgm
ignore udp udp.source=udp.netbios-dgm
"Matthew J. Bennett" wrote:
>
> Jephe Wu writes:
> >
> > try the following command.
> >
> > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P tcp
> > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P udp
> > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P tcp
> > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P udp
> > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ssn -P tcp
> >
> > if okay, then add them to /etc/rc.d/rc.local
>
> Nope- didn't work. Good to have, though. Isn't this acting on the packets
> on the PPP link, not the ethernet, and therefore not affected by diald?
>
> I'm going to have to wade through the logfiles again and make double sure
> of what I'm seeing.
>
> Matt
>
> -----------------------------
> Matt Bennett |
> [EMAIL PROTECTED] |
> http://www.hazmat.com/~mjb/ |
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-diald" in
> the body of a message to [EMAIL PROTECTED]
--
-------------------------------------------------------------------------------
Rodney D. Holm [EMAIL PROTECTED]
Apexx Technology, Inc. http://www.apexxtech.com
-------------------------------------------------------------------------------
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
