Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
Re: [suse-security] Firewall <-> CUPS
  • From: Michael Graupner <mgraupe@xxxxxxxxxxxxxxxxxxxxxxxx>
  • Date: Fri, 26 Sep 2003 18:34:08 +0200
  • Message-id: <3F746A80.80803@xxxxxxxxxxxxxxxxxxxxxxxx>

Holger Schletz schrieb:


Your reply did not get posted to the list, so I will answer directly:

Sep 24 11:51:54 ptpp74 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT=
MAC=00:50:fc:5c:dd:dc:00:d0:b7:93:ef:75:08:00 SRC= DST= LEN=60 TOS=0x00 PREC=0x00 TTL=64
ID=19456 DF PROTO=TCP SPT=51782 DPT=631 WINDOW=584
0 RES=0x00 SYN URGP=0 OPT (020405B40402080A0DEBEA270000000001030301)

But I cannot interpret what is going on.

It means that the machine (SRC=...) tried to open a TCP connection (PROTO=TCP) to your machine (DST= on port 631 (DPT=631). The source address is not identical to the address you specified in your firewall config ( Is this a typo?

I know for sure that the CUPS server is But even if I
change the configuration to

FW_TRUSTED_NETS=",tcp,631" ( The option was spelled
correclty, I have copied it in a uncomplete manner. )

the CUPS printer are not recognised.

BTW, the line W_TRUSTED_NETS=",tcp,631" is misspelled in your post (must be "FW_TRUSTED_NETS=...", check your config file.

Check the IP addresses and tell me what you see.

Best regards,

Best regards,

Michael Graupner

Institute for Theoretical Physics
Dresden University of Technology
01062 Dresden

< Previous Next >
This Thread