Multicast packets fill up my log files
Hi, (and now in english :) My provider sends me multicast packets every minutes, that are denied by the SuSE-FW2 rules, and logged: -- Jan 18 00:04:47 rohrpostfix kernel: SuSE-FW-UNALLOWED-TARGETIN=ippp0 OUT= MAC= S RC=195.3.94.57 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=7983 PROTO=2 -- I would need and iptable rule that discards those packets silently. I tried "iptables -A INPUT -i ippp0 -d 224.0.0.1/24 -j ACCEPT" without success, has anyone an idea where I went wrong? thanks Alexander
I would need and iptable rule that discards those packets silently. I tried "iptables -A INPUT -i ippp0 -d 224.0.0.1/24 -j ACCEPT" without success, has anyone an idea where I went wrong? You used -A (add) for the rule, you will have to insert (-I) before the rule that is logging the packets. I also think, that you are using ipchains parameters for iptables, but I don't know exactly. If you got no error, then I'm wrong ;)
Markus -- _____________________________ /"\ Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
Alexander Topolanek schrieb:
Hi, (and now in english :)
My provider sends me multicast packets every minutes, that are denied by the SuSE-FW2 rules, and logged: -- Jan 18 00:04:47 rohrpostfix kernel: SuSE-FW-UNALLOWED-TARGETIN=ippp0 OUT= MAC= S RC=195.3.94.57 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=7983 PROTO=2 -- I would need and iptable rule that discards those packets silently. I tried "iptables -A INPUT -i ippp0 -d 224.0.0.1/24 -j ACCEPT" without success, has anyone an idea where I went wrong?
iptables -I INPUT 1 -d 224.0.0.1/24 -i ippp0 -j REJECT would reject the packages with no logging. This rule would be the first in the input chain. Martin -- martin.peikert@discon.de Discon GmbH Internet Solutions Wrangelstrasse 100 http://www.discon.de/ 10997 Berlin, Germany
participants (3)
-
Alexander Topolanek
-
Markus Gaugusch
-
Martin Peikert