Hi I'm using SuSE 7.3 as a firewall accessing the IN via DSL. By chance I found in the archived /var/message files of the last months that pppd sporadically connects thru ppp1 instead of ppp0:
messages:Apr 13 12:11:37 xxxxxx pppd[6215]: Using interface ppp1 messages:Apr 13 12:11:37 xxxxxx pppd[6215]: Connect: ppp1 <--> /dev/pts/1 messages:Jan 18 15:51:36 xxxxxx pppd[2511]: Using interface ppp1 messages:Jan 18 15:51:36 xxxxxx pppd[2511]: Connect: ppp1 <--> /dev/pts/2
Since my firewall rules are bound to ppp0 my firewall box has been unshielded, right?
As a workaround I have blocked all traffic thru ppp1, ppp2, ppp3.
Questions:
a) How do I ensure that pppd only takes ppp0? b) Do ppp2, ppp3 etc. exist?
Best regards
Peter
Peter Karl Müller wrote:
Questions:
a) How do I ensure that pppd only takes ppp0? b) Do ppp2, ppp3 etc. exist?
yes, they exist, this will happen if your ppp0 is still in use or if you use kinternet or so and specify another device. But that will not break your rules if you setup them correctly: use ppp+ as device not ppp0 to be sure that all traffic coming thru ANY dialup connection (except isdn..) is blocked/masqueraded etc.
regards and happy easter, Sven
On Sun, 20 Apr 2003, [ISO-8859-15] Peter Karl Müller wrote:
Hi I'm using SuSE 7.3 as a firewall accessing the IN via DSL. By chance I found in the archived /var/message files of the last months that pppd sporadically connects thru ppp1 instead of ppp0:
messages:Apr 13 12:11:37 xxxxxx pppd[6215]: Using interface ppp1 messages:Apr 13 12:11:37 xxxxxx pppd[6215]: Connect: ppp1 <--> /dev/pts/1 messages:Jan 18 15:51:36 xxxxxx pppd[2511]: Using interface ppp1 messages:Jan 18 15:51:36 xxxxxx pppd[2511]: Connect: ppp1 <--> /dev/pts/2
Since my firewall rules are bound to ppp0 my firewall box has been unshielded, right?
As a workaround I have blocked all traffic thru ppp1, ppp2, ppp3.
Questions:
a) How do I ensure that pppd only takes ppp0?
That's not possible at the moment. The pppd has the (undocumented) option "unit n" to use the interface unit n but if that one is already used it just takes another one.
b) Do ppp2, ppp3 etc. exist?
If several pppd daemon are running for sure.
ciao Arvin
-
Arvin Schnell -
Peter Karl Müller -
Sven 'Darkman' Michels