[BSD] Tűzfal kérdés
Erdei Zsolt
woodi at woodi.hu
2011. Jún. 6., H, 09:08:19 CEST
well, van egy olyan sorod, hogy
block in log <blablabla>
vagy pass in log <blablabla>
na, azt manipulald meg :)
---
Erdei Zsolt
woodi at woodi.hu
http://www.woodi.hu
On Mon, 6 Jun 2011 08:51:47 +0200, Carl von Clausewitz wrote:
> Köszi :-), azonban van egy kérdésem, amire nem találtam a
> választ. A szerverteremben lévő eszközök orrba-szájba
> boradcastolnak - ezeknek a logolását hogy tudom leállítani, mert
> hihetetlen mennyiség van a logban ebből:
>
> Jun 6 08:48:28 hostname ipmon[652]: 08:48:27.731423 re0 @0:20 b
> 81.0.104.254,138 -> 81.0.104.255,138 PR udp len 20 211 IN broadcast
> Jun 6 08:48:28 hostname ipmon[652]: 08:48:28.326052 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:29 hostname ipmon[652]: 08:48:29.075878 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:30 hostname ipmon[652]: 08:48:29.825885 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:30 hostname ipmon[652]: 08:48:29.904208 re0 @0:19 b
> 81.0.104.220,53611 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:30 hostname ipmon[652]: 08:48:29.904221 re0 @0:20 b
> 81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
> Jun 6 08:48:31 hostname ipmon[652]: 08:48:30.738082 re0 @0:19 b
> 81.0.104.220,59880 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:31 hostname ipmon[652]: 08:48:30.777296 2x re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:32 hostname ipmon[652]: 08:48:32.278066 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:32 hostname ipmon[652]: 08:48:32.278079 re0 @0:20 b
> 81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
> Jun 6 08:48:33 hostname ipmon[652]: 08:48:33.429175 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:34 hostname ipmon[652]: 08:48:34.179215 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:35 hostname ipmon[652]: 08:48:34.929193 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:35 hostname ipmon[652]: 08:48:34.929360 re0 @0:20 b
> 81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
> Jun 6 08:48:35 hostname ipmon[652]: 08:48:35.386764 re0 @0:20 b
> 81.0.104.243,138 -> 81.0.104.255,138 PR udp len 20 239 IN broadcast
> Jun 6 08:48:36 hostname ipmon[652]: 08:48:36.480853 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:36 hostname ipmon[652]: 08:48:36.481280 re0 @0:20 b
> 81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
> Jun 6 08:48:36 hostname ipmon[652]: 08:48:36.539561 re0 @0:20 b
> 87.97.76.137,138 -> 87.97.76.255,138 PR udp len 20 229 IN broadcast
> Jun 6 08:48:37 hostname ipmon[652]: 08:48:37.229883 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:38 hostname ipmon[652]: 08:48:37.980172 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:39 hostname ipmon[652]: 08:48:38.981518 re0 @0:20 b
> 81.0.104.238,138 -> 81.0.104.255,138 PR udp len 20 218 IN broadcast
> Jun 6 08:48:40 hostname ipmon[652]: 08:48:39.730702 2x re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:41 hostname ipmon[652]: 08:48:41.230029 re0 @0:19 b
> 81.0.104.243,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:42 hostname ipmon[652]: 08:48:42.595540 re0 @0:19 b
> 87.97.76.138,137 -> 87.97.76.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:44 hostname ipmon[652]: 08:48:43.946507 re0 @0:26 b
> 81.0.104.123,17500 -> 255.255.255.255,17500 PR udp len 20 146 IN
> broadcast
> Jun 6 08:48:44 hostname ipmon[652]: 08:48:43.947606 re0 @0:26 b
> 81.0.104.123,17500 -> 81.0.104.255,17500 PR udp len 20 146 IN
> broadcast
> Jun 6 08:48:51 hostname ipmon[652]: 08:48:51.037714 re0 @0:26 b
> 81.0.104.220,626 -> 224.0.0.1,626 PR udp len 20 67 IN low-ttl
> multicast
> Jun 6 08:48:55 hostname ipmon[652]: 08:48:55.089260 2x re0 @0:19 b
> 81.0.104.25,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
> Jun 6 08:48:56 hostname ipmon[652]: 08:48:56.588485 re0 @0:19 b
> 81.0.104.25,137 -> 81.0.104.255,137 PR udp len 20 78 IN broadcast
>
> Köszönöm előre is...
> Carl
>
> 2011/6/6 Berta Sándor
>
>> 2011.06.06. 0:34 keltezéssel, Carl von Clausewitz írta:
>>
>>> Köszönöm az infókat, valójában lusta dög voltam
>>> végignézni a tűzfalakat, és azt hittem, majd valaki szépen
>>> bedob egy
>>> mintakonfigot :-))) node sebaj, végignéztem, IPF lett belőle,
>>> szépen megy is, csak loggol orrba-szájba, amit még
>>> finomitani kell,
>>>
>>> A könyvnek meg nekiesek... Szép...
>>>
>>> üdv,
>>> Carl
>>
>> Alapból vannak minták!
>> Nézd meg a /etc/rc.firewall -t.
>> A 'man ipfw' is tele van mintákkal.
>>
>> üdv
>> berta
>>
>> _______________________________________________
>> BSD levlista
>> BSD at hu.freebsd.org [1]
>> https://lists.hu.freebsd.org/mailman/listinfo/bsd [2]
>
>
>
> Links:
> ------
> [1] mailto:BSD at hu.freebsd.org
> [2] https://lists.hu.freebsd.org/mailman/listinfo/bsd
> [3] mailto:berta at beco.hu
További információk a(z) BSD levelezőlistáról