-----Original Message----- From: l.g.e@web.de [mailto:l.g.e@web.de] Sent: 02 April 2004 10:33 To: suse-security@suse.com Subject: Re: [suse-security] Odd FW Log
I *don't* mind being scanned, it's "one of those thing". I *do* mind my firewall logs telling me it's letting packets through that it shouldn't - that was what my question was about, after all....
I can send my (comments removed) FW config if anyone want a look....
Maybe you want to tell (again?) which version of SuSEfirewall2 you are using. I think there has been a buglet somewhen with the log prefix saying "ACCEPT" where it should have said "LOG", but it did the right thing anyways. (I may remember wrong, of course)
I didn't say (oops) that it's SuSEfirewall2 v3.1. Your logging bug suggestion ties in with Joe Morris' email. I'll assume it is a log problem, but have a service running on port 1433 and see if it does actually get any packets when the FW says "ACCEPT". Thanks, Tom. PS: * SuSE support say "go to YOU and ensure you have the latest", even though I told them I've done that. * The SuSE portal has no recored of any such FW bugs like this, as far a I can see.