On Tue, Dec 19, 2000 at 11:41 +0000, John Trickey wrote:
I have looked through the archives and found a thread on the problem but no conclusion. Does anybody know if there is an answer to the following.
Have you visited the suse-isdn archives? This topic is more likely to show up there instead of the suse-security list. It doesn't matter whether you dial up via ISDN or an analog modem. It's sufficient to have pppd(8) or ipppd(8) running. :)
I am running SuSE as a dialup gateway to my ISP using ppp with dynamic IPADDR assignment, ipchains, ipmasq etc. The problem comes when the link is dropped and then almost immediately re-established. ipmasq remembers connections from the old session and tries to continue using them.
You probably would get a different IP upon your next connection, while chances for getting the same IP again are very low. So read "man 8 pppd" and search for "ip-up" and "ip-down". The IP addresses are passed to these scripts. Just queue up another ipchains rule to block the (now invalid) IP when the link goes down. And have the rule expire after some 30 minutes. Since I didn't follow it too closely, I cannot speak well about it. But several "reset provoking patches" have been floating around, too -- which might solve your problem, too (or even better). virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you.