On Thu, Jan 5, 2017 at 8:07 AM, Dixan <agustin.di...@esilt.azcuba.cu> wrote:
> El 04/01/17 a las 22:25, Reicht, Ignaz escribió:
> > Hi,
> >
> > try this:
> > iptables -A ufw-before-input -p igmp -m ttl --ttl-eq 1 -j ACCEPT
> > iptables -A ufw-before-input -p udp -m ttl --ttl-eq 1 -d 224.0.0.22 -j
> ACCEPT
> >
>
> add rules and waiting logs reports..thanks!
> a curiosity ¿reducing ttl packet udp from igmp protocol "bypass" psad
> rules?
> thank again an regard!
>
>
>
That is a good solution, and is probably the recommended way to fix this
since iptables won't be logging all of that traffic.
Another solution would be to add the following line to the auto_dl file:
224.0.0.0/24 0;
Thanks,
--Mike
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
psad-discuss mailing list
psad-discuss@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/psad-discuss
