Mailinglist Archive: opensuse-security (499 mails)

< Previous Next >
SuSE-FW-DROP-ANTI-SPOOFING IN
  • From: "Dr. Peter Bast" <pb@xxxxxxxx>
  • Date: Wed, 05 Jun 2002 11:45:56 +0200
  • Message-id: <3CFDDDD4.30CDF277@xxxxxxxx>
Hello,

I get permanently the following messages in my /var/log/messages:

Jun 5 11:05:20 inis kernel: SuSE-FW-DROP-ANTI-SPOOFING IN=eth0 OUT=
MAC= SRC=192.168.201.55 DST=192.168.201.255 LEN=32 TOS=0x00 PREC=0x00
TTL=64 ID=0 DF PROTO=UDP SPT=520 DPT=520 LEN=12
Jun 5 11:05:20 inis kernel: SuSE-FW-DROP-ANTI-SPOOFING IN=eth1 OUT=
MAC= SRC=192.168.0.2 DST=192.168.0.255 LEN=32 TOS=0x00 PREC=0x00 TTL=64
ID=0 DF PROTO=UDP SPT=520 DPT=520 LEN=12

I use a Server with SuSE Linux 8.0 connected to a LAN via eth0
(192.168.201.55) and to an externel ADSL-Router via eth1 (192.168.0.2).
The LAN-IP of the Hardware-Router is 192.168.0.1. All Netmasks are set
to 255.255.255.0. The connections between the internal Netdevice (eth0)
and the external Netdevice (eth1) are very slow. On the Server running
BIND9, Squid Samba and Sendmail.

The follgenden firewall settings are used for SuSEfirewall2:
FW_DEV_EXT="eth1"
FW_DEV_INT="eth0"
FW_DEV_DMZ=""
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_DEV="$FW_DEV_EXT"
FW_PROTECT_FROM_INTERNAL="no"
FW_AUTOPROTECT_SERVICES="no"
FW_SERVICES_EXT_TCP="http https pop3 pop3s smtp telnet 53"
FW_SERVICES_EXT_UDP="53"
FW_SERVICES_INT_TCP="25 53 80 110 137 3128"
FW_SERVICES_INT_UDP="53 137"
FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes"
FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes"
FW_SERVICE_AUTODETECT="yes"
FW_SERVICE_SQUID="yes"
FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="yes"
FW_LOG_ACCEPT_ALL="no"
FW_LOG="--log-level warning --log-tcp-options --log-ip-option
--log-prefix SuSE-FW"
FW_KERNEL_SECURITY="no"
FW_ALLOW_PING_FW="yes"
FW_ALLOW_PING_EXT="yes"
FW_ALLOW_FW_TRACEROUTE="yes"
FW_ALLOW_FW_BROADCAST="no"
FW_IGNORE_FW_BROADCAST="yes"

I hope everybody can help.me.....................

Thanks!

Peter
< Previous Next >
This Thread
  • No further messages