[BSD] Tűzfal kérdés

Carl von Clausewitz clausewitz45 at gmail.com
2011. Jún. 6., H, 08:51:47 CEST 

Köszi :-), azonban van egy kérdésem, amire nem találtam a választ. A
szerverteremben lévő eszközök orrba-szájba boradcastolnak - ezeknek a
logolását hogy tudom leállítani, mert hihetetlen mennyiség van a logban
ebből:

Jun  6 08:48:28 hostname ipmon[652]: 08:48:27.731423 re0 @0:20 b
81.0.104.254,138 -> 81.0.104.255,138 PR udp len 20 211 IN broadcast
Jun  6 08:48:28 hostname ipmon[652]: 08:48:28.326052 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:29 hostname ipmon[652]: 08:48:29.075878 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:30 hostname ipmon[652]: 08:48:29.825885 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:30 hostname ipmon[652]: 08:48:29.904208 re0 @0:19 b
81.0.104.220,53611 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:30 hostname ipmon[652]: 08:48:29.904221 re0 @0:20 b
81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
Jun  6 08:48:31 hostname ipmon[652]: 08:48:30.738082 re0 @0:19 b
81.0.104.220,59880 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:31 hostname ipmon[652]: 08:48:30.777296 2x re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:32 hostname ipmon[652]: 08:48:32.278066 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:32 hostname ipmon[652]: 08:48:32.278079 re0 @0:20 b
81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
Jun  6 08:48:33 hostname ipmon[652]: 08:48:33.429175 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:34 hostname ipmon[652]: 08:48:34.179215 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:35 hostname ipmon[652]: 08:48:34.929193 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:35 hostname ipmon[652]: 08:48:34.929360 re0 @0:20 b
81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
Jun  6 08:48:35 hostname ipmon[652]: 08:48:35.386764 re0 @0:20 b
81.0.104.243,138 -> 81.0.104.255,138 PR udp len 20 239 IN broadcast
Jun  6 08:48:36 hostname ipmon[652]: 08:48:36.480853 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:36 hostname ipmon[652]: 08:48:36.481280 re0 @0:20 b
81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
Jun  6 08:48:36 hostname ipmon[652]: 08:48:36.539561 re0 @0:20 b
87.97.76.137,138 -> 87.97.76.255,138 PR udp len 20 229 IN broadcast
Jun  6 08:48:37 hostname ipmon[652]: 08:48:37.229883 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:38 hostname ipmon[652]: 08:48:37.980172 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:39 hostname ipmon[652]: 08:48:38.981518 re0 @0:20 b
81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
Jun  6 08:48:40 hostname ipmon[652]: 08:48:39.730702 2x re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:41 hostname ipmon[652]: 08:48:41.230029 re0 @0:19 b
81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:42 hostname ipmon[652]: 08:48:42.595540 re0 @0:19 b
87.97.76.138,137 -> 87.97.76.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:44 hostname ipmon[652]: 08:48:43.946507 re0 @0:26 b
81.0.104.123,17500 -> 255.255.255.255,17500 PR udp len 20 146 IN broadcast
Jun  6 08:48:44 hostname ipmon[652]: 08:48:43.947606 re0 @0:26 b
81.0.104.123,17500 -> 81.0.104.255,17500 PR udp len 20 146 IN broadcast
Jun  6 08:48:51 hostname ipmon[652]: 08:48:51.037714 re0 @0:26 b
81.0.104.220,626 -> 224.0.0.1,626 PR udp len 20 67 IN low-ttl multicast
Jun  6 08:48:55 hostname ipmon[652]: 08:48:55.089260 2x re0 @0:19 b
81.0.104.25,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
Jun  6 08:48:56 hostname ipmon[652]: 08:48:56.588485 re0 @0:19 b
81.0.104.25,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast

Köszönöm előre is...
Carl

2011/6/6 Berta Sándor <berta at beco.hu>

> 2011.06.06. 0:34 keltezéssel, Carl von Clausewitz írta:
>
>> Köszönöm az infókat, valójában lusta dög voltam végignézni a tűzfalakat,
>> és azt hittem, majd valaki szépen bedob egy
>> mintakonfigot :-))) node sebaj, végignéztem, IPF lett belőle, szépen megy
>> is, csak loggol orrba-szájba, amit még
>> finomitani kell,
>>
>> A könyvnek meg nekiesek... Szép...
>>
>> üdv,
>> Carl
>>
>
> Alapból vannak minták!
> Nézd meg a /etc/rc.firewall -t.
> A 'man ipfw' is tele van mintákkal.
>
> üdv
> berta
>
> _______________________________________________
> BSD levlista
> BSD at hu.freebsd.org
> https://lists.hu.freebsd.org/mailman/listinfo/bsd
>
--------- következő rész ---------
Egy csatolt HTML állomány át lett konvertálva...
URL: <http://datacast.hu/pipermail/bsd/attachments/20110606/c38d28e5/attachment.html>

További információk a(z) BSD levelezőlistáról