Mailinglist Archive: opensuse-security (499 mails)

< Previous Next >
Re: [suse-security] how to avoid logging ACCEPTs?
  • From: GertJan Spoelman <sl@xxxxxx>
  • Date: Tue, 18 Jun 2002 21:05:49 +0200
  • Message-id: <200206182105.49539.sl@xxxxxx>
On Tuesday 18 June 2002 19:30, Bob Berman wrote:
> I am running SuSeFirewall2 and am also running a Gnutella service
> on port 6346. I am getting tons of messages in my firewall log informing
> me that connections to port 6346 are being accepted. I don't care to know
> this. How can I set up an iptables rule to *not* log this fact?
>
> Jun 18 12:48:40 telluride kernel: SuSE-FW-ACCEPTIN=eth0 OUT=
> MAC=00:50:da:5d:79:dc:00:03:fe:e2:40:8d:08:00 SRC=203.
> 195.148.135 DST=xx.184.16.xxx LEN=48 TOS=0x00 PREC=0x00 TTL=110 ID=20700
> DF PROTO=TCP SPT=63787 DPT=6346 WINDOW=163
> 84 RES=0x00 SYN URGP=0 OPT (020405B401010402)
>
> I am not an expert about iptables and would appreciate some help.

You don't need to add a rule, it's a config option.
In firewall2.rc.config at 16.) set FW_LOG_ACCEPT_CRIT to "no"
and you should be rid of those messages.
--

GertJan

< Previous Next >
References