Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
RE: [suse-security] SuSEfirewall v2.1 released
  • From: "Holger Steppke" <hos@xxxxxxxxx>
  • Date: Sun, 9 Dec 2001 00:05:05 +0100
  • Message-id: <NDBBIJJOMKLFPLMJHFPLEEOOGPAA.hos@xxxxxxxxx>
Hi,

the new version works fine, at least for me ;)

BTW: Would be nice if there would be a way to ignore the loging based on
ip/port rules.
The problem i have is that my box is connected to a shared LAN where other
customers are connected to as well.
So my log gets spammed by the windows smb brodcast msg?s like (around 40000
lines per day)
Dec 8 22:53:34 www kernel: SuSE-FW-UNALLOWED-TARGET IN=eth0 OUT=
MAC=x.x.x.x.x..x.x.x.x.x.x SRC=1.1.1.20 DST=1.1.1.255 LEN=215 TOS=0x00
PREC=0x00 TTL=128 ID=935 PROTO=UDP SPT=138 DPT=138 LEN=195
I will still block them, but would like to avoid loging them when coming
from the same LAN.

Anyway the Stuff is quit usfull :))


Bye
Holger







>-----Original Message-----
>From: Marc Heuse [mailto:marc@xxxxxxx]
>Sent: Saturday, December 08, 2001 7:53 PM
>To: suse-security@xxxxxxxx
>Cc: Kurt Garloff; ervee@xxxxxxxxxxxx
>Subject: [suse-security] SuSEfirewall v2.1 released
>
>
>Hi,
>
>SuSEfirewall2 v2.1 will be available within the next hour from
>http://www.suse.de/~marc/suse
>
>CHANGES:
>
>v2.1 08.12.01 GAMMA
> * Added '!' support to FW_REDIRECT (thanks to rkooijman@xxxxxxxxx)
> * FW_ALLOW_*_HIGH_PORT change: related connections are now always
> allowed. Therefore changed the default of the options.
> * Added patch from <ervee@xxxxxxxxxxxx> for better log
>output. thanks!
>
>Greets,
> Marc
>--
> E@mail: marc@xxxxxxx Function: Security Research and Advisory
> PGP: "lynx -source http://www.suse.de/~marc/marc.pgp | pgp -fka"
> Key fingerprint = B5 07 B6 4E 9C EF 27 EE 16 D9 70 D4 87 B5 63 6C
>Private: http://www.suse.de/~marc SuSE: http://www.suse.de/security
>
>--
>To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
>For additional commands, e-mail: suse-security-help@xxxxxxxx
>


< Previous Next >
References