Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
Re: Re: Re: Re: [suse-security] Dial timeout on isdn router with ip-tables logging
  • From: BLeonhardt@xxxxxxxxxxx
  • Date: Wed, 1 Oct 2003 09:23:24 +0200
  • Message-id: <OF3D3E5C35.12A8F92C-ONC1256DB2.0028468F-C1256DB2.00279A5F@xxxxxxxxxxx>




Good morning ;-)

I am not block all outgoing traffic from the local box just the dns-requests coming from the box itself - I have bind8 running on the machine.
All other blocking-rules are in the forward chain ... so if I run win ther won't be a connection established all 3 min. :-) ... default policy (from the linux-box) for outgoing connections is allow (accept) ...

bruno


Keith Roberts <keith@xxxxxxxxxxxxxxxxxxxxxxxx> schrieb am 30.09.2003 17:30:55:

>
>
> On Tue, 30 Sep 2003 BLeonhardt@xxxxxxxxxxx wrote:
>
> >
> >
> >
> >
> > Yes, that's it.
> >
> > I don't know why... all possible outgoing traffic has been blocked ( for
> testing ) but he will not hangup... :-(
> >
>
> That MAY be your problem.
>
> I'm NOT using ISDN, but on my dial-up modem connection, when
> I hit CTRL-C, to kill wvdial, there are a few packets sent
> out from my modem, to cleanly terminate the dial-in
> connection.
>
> Sometimes my dial-in connection will stay live, if I do NOT
> finish wvdial in the correct manner. eg CTRL-Z instead of
> CTRL-C.
>
> If you are blocking ALL outgoing packets, this may be why
> the connection stays open - because the signal to terminate
> your ISDN connection is not reaching your ISDN service
> provider.
>
>
> Here's my 56K modem start sequence:
>
> topaz:/home/keith # wvdial
> --> WvDial: Internet dialer version 1.42
> --> Initializing modem.
> --> Sending: AT&F0&C1
> AT&F0&C1
> OK
> --> Modem initialized.
> --> Sending: ATDT1470 0808 9933 030
> --> Waiting for carrier.
> ATDT1470 0808 9933 030
> CONNECT 38400
> --> Carrier detected. Starting PPP immediately.
> --> Starting pppd at Tue Sep 30 15:20:53 2003
> --> pid of pppd: 1255
> --> pppd: Using interface ppp0
> --> pppd: local IP address 62.64.219.8
> --> pppd: remote IP address 213.120.78.69
> --> pppd: primary DNS address 212.74.114.193
> --> pppd: secondary DNS address 212.74.112.66
> --> pppd: Script /etc/ppp/ip-up run successful
> --> Default route Ok.
> --> Nameserver (DNS) Ok.
> --> Connected... Press Ctrl-C to disconnect
>
> [1]+ Stopped wvdial
>
>
> I've just checked this by hitting CTRL-Z.
>
> My line is still live!
>
> I now have to turn my modem OFF to break the connection.
>
>
> Now, trying to redial I get:
>
>
> topaz:/home/keith # wvdial
> --> WvDial: Internet dialer version 1.42
> --> Cannot open /dev/ttyS1: Device or resource busy
> --> Cannot open /dev/ttyS1: Device or resource busy
> --> Cannot open /dev/ttyS1: Device or resource busy
>
> Because the wvdial script was not stopped correctly.
>
> Now I kill the bash shell in KDE to remove the device lock,
> and free up the modem!
>
>
> HTH - Keith
>
>
>
>


< Previous Next >