Morgan Cox wrote: > Hi. > > I am running vuurmuur Beta 0.8.2 (really nice app btw) > > I have noticed in the logs I am occasionally getting 'vrmr: DROP fw > INVALID' messages. > > The weird thing is that I am getting the messages on ports that should > be open. > > My desktop is 192.168.0.206 in my LAN, I have allowed any connection > from LAN to world. > > I can usually use port 80 fine, here is an example log. > > [41153.204094] vrmr: DROP fw INVALID IN=eth1 OUT=ppp0 SRC=192.168.0.206 > DST=206.55.108.162 LEN=40 TOS=0x00 PREC=0x00 TTL=63 ID=18033 DF > PROTO=TCP SPT=43174 DPT=80 WINDOW=92 RES=0x00 ACK FIN URGP=0 > > How to stop the drop ? > > i.e why is this occurring ?
Coincidently more or less the same question was asked a day before yours, here is what I answered there: --- quote --- In general I think it's safe to say that everyone will see some occasional "invalid" drops of individual packets. However that shouldn't lead to killed/timed out connections, so something seems to be up. It's hard to say what's causing it though. Netfilter has a number of reasons to mark a packet with state invalid. "Possible states are INVALID meaning that the packet could not be identified for some reason which includes running out of memory and ICMP errors which don't correspond to any known connection" (http://lists.netfilter.org/pipermail/netfilter-devel/2003-June/011860.html) --- unquote --- I think if you're not seeing actual connections timing out (such as ssh sessions, downloads and such) it's not really an issue. Cheers, Victor ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Vuurmuur-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/vuurmuur-users
