Hi..
For some reason i dont seem to be able to match multicast traffic with a
seperate
rules so it wont show up anymore thur my final "deny all and log rule"
(multicast
stuff is starting to fill up my logs really fast)
This is what is in my log file:
Nov 29 20:46:26 badaboom kernel: Packet log: input REJECT eth0 PROTO=17
24.132.52.87:1508 224.0.0.1:4242 L=57 S=0x00 I=59062 F=0x0000 T=1
Nov 29 20:47:00 badaboom kernel: Packet log: input REJECT eth0 PROTO=17
24.132.53.154:2301 255.255.255.255:2301 L=40 S=0x00 I=60748 F=0x0000 T=128
Nov 29 20:47:06 badaboom kernel: Packet log: input REJECT eth0 PROTO=2
24.132.52.1:65535 224.0.0.1:65535 L=28 S=0xC0 I=52994 F=0x0000 T=1
And this is what i have in my rule-set trying to match the above to reject
it w/out
logging it.
# Multicast servers produces a lot of shit we dont want on our network
/sbin/ipchains -A input -j REJECT -i eth0 -p udp -d 224.0.0.1 4242
/sbin/ipchains -A input -j REJECT -i eth0 -p udp -d 224.0.0.1 65535
What am I doing wrong here??
The line that logs everything that doesnt match a rule before that one is:
# All other incoming is denied and logged.
/sbin/ipchains -A input -j REJECT -s $UNIVERSE -d $UNIVERSE $LOGGING
Any input is welcome.
Jasper
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
