St�phane Abondance wrote:
>
> I got this in my /var/log/messages :
>
> Apr 10 20:19:23 cerbere diald[23440]: filter ignored rule 0 proto 6 len
> 44 seq 1f03cfb ack 0 flags SYN packet 192.168.0.1,64871 =>
> 212.27.35.195,3128
>
> Is it good ?
> Because i never put in the file "standard.filter" a rule like that.
Diald logs "filer ignored rule 0" whenever a packet does not
match any rule. In this case the man page says that the packet
should be ignored.
But I think that there is a bug in diald (both 16.5 and 99.x
versions). I think that in this case diald accepts the packet
with a timeout of 0, thus shortening the connection time.
This caused me many troubles, because the first packet went
across the connection was a packet without a matching rule, and
setting a timeout to 0 caused the connection to be terminated
after just one second.
I'm looking for the current mantainer of diald, to discuss
somefixes to the code.
Niccolo Rigacci
Firenze - Italy
--
Contro la Tariffa Urbana a Tempo - http://notut.ml.org
"Who needs horror movies when we have Microsoft"?
(Christine Comaford, PC Week, 27/9/95)
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
