Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
Re: Re: Re: Re: Re: [suse-security] Dial timeout on isdn router with ip-tables logging
  • From: BLeonhardt@xxxxxxxxxxx
  • Date: Wed, 1 Oct 2003 11:15:53 +0200
  • Message-id: <OFDB07F0A0.326119E6-ONC1256DB2.0032D40B-C1256DB2.0031E6AE@xxxxxxxxxxx>




I will test / check that -- but I guess he won't hangup anyway ...

bruno


Keith Roberts <keith@xxxxxxxxxxxxxxxxxxxxxxxx> schrieb am 01.10.2003 12:00:06:

>
>
> Hmm...
>
> I'm really not sure what to suggest next here...
>
> You have got me stumped with this one Bruno.
>
>
> Just a few more thoughts.
>
>
> Does your router have any blocking rules in it?
>
> If you turn IPTables logging off (not the firewall itself)
>
> does your ISDN script work correctly?
>
>
> Regards - Keith
>
>
>
>
>
> On Wed, 1 Oct 2003 BLeonhardt@xxxxxxxxxxx wrote:
>
> >
> >
> >
> >
> > Good morning ;-)
> >
> > I am not block all outgoing traffic from the local box just the dns-requests
> coming from the box itself - I have bind8 running on the machine.
> > All other blocking-rules are in the forward chain ... so if I run win ther
> won't be a connection established all 3 min. :-) ... default policy (from the
> linux-box) for outgoing connections is allow (accept) ...
> >
> > bruno
> >
> >
> > Keith Roberts <keith@xxxxxxxxxxxxxxxxxxxxxxxx> schrieb am 30.09.2003 17:30:55:
> >
> > >
> > >
> > > On Tue, 30 Sep 2003 BLeonhardt@xxxxxxxxxxx wrote:
> > >
> > > >
> > > >
> > > >
> > > >
> > > > Yes, that's it.
> > > >
> > > > I don't know why... all possible outgoing traffic has been blocked ( for
> > > testing ) but he will not hangup... :-(
> > > >
> > >
> > > That MAY be your problem.
> > >
> > > I'm NOT using ISDN, but on my dial-up modem connection, when
> > > I hit CTRL-C, to kill wvdial, there are a few packets sent
> > > out from my modem, to cleanly terminate the dial-in
> > > connection.
> > >
> > > Sometimes my dial-in connection will stay live, if I do NOT
> > > finish wvdial in the correct manner. eg CTRL-Z instead of
> > > CTRL-C.
> > >
> > > If you are blocking ALL outgoing packets, this may be why
> > > the connection stays open - because the signal to terminate
> > > your ISDN connection is not reaching your ISDN service
> > > provider.
> > >
> > >
> > > Here's my 56K modem start sequence:
> > >
> > > topaz:/home/keith # wvdial
> > > --> WvDial: Internet dialer version 1.42
> > > --> Initializing modem.
> > > --> Sending: AT&F0&C1
> > > AT&F0&C1
> > > OK
> > > --> Modem initialized.
> > > --> Sending: ATDT1470 0808 9933 030
> > > --> Waiting for carrier.
> > > ATDT1470 0808 9933 030
> > > CONNECT 38400
> > > --> Carrier detected. Starting PPP immediately.
> > > --> Starting pppd at Tue Sep 30 15:20:53 2003
> > > --> pid of pppd: 1255
> > > --> pppd: Using interface ppp0
> > > --> pppd: local IP address 62.64.219.8
> > > --> pppd: remote IP address 213.120.78.69
> > > --> pppd: primary DNS address 212.74.114.193
> > > --> pppd: secondary DNS address 212.74.112.66
> > > --> pppd: Script /etc/ppp/ip-up run successful
> > > --> Default route Ok.
> > > --> Nameserver (DNS) Ok.
> > > --> Connected... Press Ctrl-C to disconnect
> > >
> > > [1]+ Stopped wvdial
> > >
> > >
> > > I've just checked this by hitting CTRL-Z.
> > >
> > > My line is still live!
> > >
> > > I now have to turn my modem OFF to break the connection.
> > >
> > >
> > > Now, trying to redial I get:
> > >
> > >
> > > topaz:/home/keith # wvdial
> > > --> WvDial: Internet dialer version 1.42
> > > --> Cannot open /dev/ttyS1: Device or resource busy
> > > --> Cannot open /dev/ttyS1: Device or resource busy
> > > --> Cannot open /dev/ttyS1: Device or resource busy
> > >
> > > Because the wvdial script was not stopped correctly.
> > >
> > > Now I kill the bash shell in KDE to remove the device lock,
> > > and free up the modem!
> > >
> > >
> > > HTH - Keith
> > >
> > >
> > >
> > >
> >
> >
>


< Previous Next >