On Wednesday 10 July 2002 18.15, Alberto Santana wrote:
Hi list,
My firewall is accepting connections from 192.168.1.100 ...
Jul 10 01:29:01 sophia kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:04:5a:50:6e:94:00:10:b5:73:ba:08:08:00 SRC=1 92.168.1.100 DST=192.168.1.101 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=10318 DF PROTO=TCP SPT=3122 DPT=1214 WINDO W=64872 RES=0x00 SYN URGP=0 OPT (020404F801010402)
/etc/SuSEfirewall2 has: FW_PROTECT_FROM_INTERNAL="yes" FW_TRUSTED_NETS="128.227.192.77,tcp,22"
everything else is either empty or the default value.
What does the FW_ALLOW_INCOMING_HIGHPORTS_TCP variable say?
hosts.allow sshd : 128.227.192.77 : ALLOW
hosts.deny ALL : ALL
These two have nothing to do with the firewall. They control the tcp wrappers. regards Anders