Hi,

When I use mtr-tiny (text mode version) to check on a destination, the
firewall logs get flooded a lot! No matter if I mtr from an inside host
(ie: desktop) or the firewall itself.

ex: on the firewall itself, "mtr 1.2.3.4" and suppose there are 6 hops to
reach it from A.A.A.A to F.F.F.F

I get something :
Shorewall:+net-fw:ACCEPT:IN=eth0 OUT= SRC=A.A.A.A DST=$FW LEN=56 TOS=0x00
PREC=0x00 TTL=255 ID=34268 PROTO=ICMP TYPE=11 CODE=0 [SRC=$FW DST=1.2.3.4
LEN=64 TOS=0x00 PREC=0x00 TTL=1 ID=54513 PROTO=ICMP TYPE=8 CODE=0 ID=65151
SEQ=59520 ]

At start, every hop from A.A.A.A to F.F.F.F generates one of these lines
and after each hop have been reached, there's a variation: Only some of the
hops on the way generate one of these lines every second.

Is this normal behaviour or is there something wrong somewhere?

Note: mtr's "Loss%" column stays at 0.0% all the time, no issue there.

-- 
ObNox
------------------------------------------------------------------------------
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to