diff options
Diffstat (limited to 'zarb-ml/mageia-discuss/20120506/007223.html')
| -rw-r--r-- | zarb-ml/mageia-discuss/20120506/007223.html | 89 |
1 files changed, 89 insertions, 0 deletions
diff --git a/zarb-ml/mageia-discuss/20120506/007223.html b/zarb-ml/mageia-discuss/20120506/007223.html new file mode 100644 index 000000000..65b7f030a --- /dev/null +++ b/zarb-ml/mageia-discuss/20120506/007223.html @@ -0,0 +1,89 @@ +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN"> +<HTML> + <HEAD> + <TITLE> [Mageia-discuss] Odd entry in log file + </TITLE> + <LINK REL="Index" HREF="index.html" > + <LINK REL="made" HREF="mailto:mageia-discuss%40mageia.org?Subject=Re%3A%20%5BMageia-discuss%5D%20Odd%20entry%20in%20log%20file&In-Reply-To=%3C201205062258.03131.alien%40rmail.be%3E"> + <META NAME="robots" CONTENT="index,nofollow"> + <META http-equiv="Content-Type" content="text/html; charset=us-ascii"> + <LINK REL="Previous" HREF="007222.html"> + + </HEAD> + <BODY BGCOLOR="#ffffff"> + <H1>[Mageia-discuss] Odd entry in log file</H1> + <B>Maarten Vanraes</B> + <A HREF="mailto:mageia-discuss%40mageia.org?Subject=Re%3A%20%5BMageia-discuss%5D%20Odd%20entry%20in%20log%20file&In-Reply-To=%3C201205062258.03131.alien%40rmail.be%3E" + TITLE="[Mageia-discuss] Odd entry in log file">alien at rmail.be + </A><BR> + <I>Sun May 6 22:58:03 CEST 2012</I> + <P><UL> + <LI>Previous message: <A HREF="007222.html">[Mageia-discuss] Odd entry in log file +</A></li> + + <LI> <B>Messages sorted by:</B> + <a href="date.html#7223">[ date ]</a> + <a href="thread.html#7223">[ thread ]</a> + <a href="subject.html#7223">[ subject ]</a> + <a href="author.html#7223">[ author ]</a> + </LI> + </UL> + <HR> +<!--beginarticle--> +<PRE>Op zondag 06 mei 2012 21:12:14 schreef imnotpc: +><i> On 05/06/2012 02:49 PM, Doug Lytle wrote: +</I>><i> > imnotpc wrote: +</I>><i> >> but wireless device access is more lenient. +</I>><i> > +</I>><i> > My thoughts would be someone connecting via the wireless with another +</I>><i> > interface connected as well. We have users that don't understand that +</I>><i> > they don't need to do both wireless and wired. Some times we see +</I>><i> > wireless, wired and vpn. +</I>><i> > +</I>><i> > Just a guess. +</I>><i> > +</I>><i> > Doug +</I>><i> +</I>><i> The problem with that is that the firewall rules on these boxes +</I>><i> immediately log and drop any packet that doesn't come from the subnet +</I>><i> assigned to that interface. I'm not an expert on iptables but I believe +</I>><i> that anything coming in on those interfaces would hit iptables and be +</I>><i> dropped before the kernel log. Even if the kernel saw them first I +</I>><i> should still see corresponding iptables log entries. The router boxes +</I>><i> don't have any wireless cards so they aren't generating these entries +</I>><i> that way. I don't know how a wireless host connecting to a wireless +</I>><i> router, which has a wired LAN IP on LAN facing interface and uses DHCP +</I>><i> for the wireless interface, is able to propagate a different IP address +</I>><i> all the way to the firewall without being translated or dropped. Very +</I>><i> curious. +</I>><i> +</I>><i> Jeff +</I> +Martians are <A HREF="http://en.wikipedia.org/wiki/Martian_packet">http://en.wikipedia.org/wiki/Martian_packet</A> . + +by default, kernels drop these, you can tune these things in /proc somewhere, +thus also with sysctl. + +there may also be a setting about not logging them, best your read up on it, +if you're interested. +</PRE> + +<!--endarticle--> + <HR> + <P><UL> + <!--threads--> + <LI>Previous message: <A HREF="007222.html">[Mageia-discuss] Odd entry in log file +</A></li> + + <LI> <B>Messages sorted by:</B> + <a href="date.html#7223">[ date ]</a> + <a href="thread.html#7223">[ thread ]</a> + <a href="subject.html#7223">[ subject ]</a> + <a href="author.html#7223">[ author ]</a> + </LI> + </UL> + +<hr> +<a href="https://www.mageia.org/mailman/listinfo/mageia-discuss">More information about the Mageia-discuss +mailing list</a><br> +</body></html> |