Hi Leen, On 2002.03.17 21:51 Leen de Braal wrote:
Hi all, Getting messages like: linux kernel: SuSE-FW-UNALLOWED-TARGETIN=ippp0 OUT= MAC= SRC=192.33.4.12 DST=212.xxx.xxx.xxx LEN=289 TOS=0x00 PREC=0x00 TTL=232 ID=48708 DF PROTO=UDP SPT=53 DPT=1024 LEN=269
This means that a UDP packet arrived on interface ippp0, from host 192.33.4.12:53 (c.root-servers.net) for host 212.xxx.xxx.xxx:1024 This looks like a reply from a nameserver to your machine... maybe to an old ip-address?
System is SuSE7.3, SuSEfirewall2, running with eth0 internal, and ippp0 for the Internet. Running named with standard config (caching only), dhcpd, samba. Winclients logon OK, though it takes long time (server is dialing out). In firewall config I set FW_STOP_KEEP_ROUTING_STATE="yes", i put highports open, using dynip patch, but above messages only seam to dissapear when I
restart firewall with line open. As soon as line is down, and up again, things go wrong (other IP address from ISP). I also set lcp-restart 2 in options.ippp0. I don't know where to look now, anybody could give a hint??
Try restarting the firewall automagically then - have a close look at /etc/ppp/ip-up and find somewhere suitable to do a restart... HTH, Maf.