Date: Wed, 21 Jun 2000 12:19:44 +1000 From: "John Saunders" <john@nlc.net.au> To: "FreeBSD questions" <freebsd-questions@FreeBSD.ORG> Subject: user mode ppp alive filters Message-ID: <00c601bfdb27$2af63810$4ab511cb@vecommerce.com.au>
next in thread | raw e-mail | index | archive | help
Hi all,
I have a question regarding the alive filters in user mode ppp.
I currently prevent DNS, RWHO, ICMP, and SMB broadcasts from keeping
the link up. However since yesterday somebody is probing me on the
Back Orriface port (1235) every 5 minutes and this is keeping my
link alive.
So what I would like is the filter rules required to prevent refused
connections from keeping the link up. Interestingly I'm not seeing
my box generate ICMP port unreachable packets with tcpdump. I'm running
ppp with the -nat option if that makes a difference.
This is what tcpdump is showing me.
12:11:15.043265 209.185.128.147.1863 > x.x.x.x.1235: P 3022740420:30227404
21(1) ack 3464214 win 64240 (DF)
12:11:15.160661 x.x.x.x.1235 > 209.185.128.147.1863: . ack 1 win 7853 (DF)
12:11:15.160791 x.x.x.x.1235 > 209.185.128.147.1863: . ack 1 win 7853 (DF)
Now to send a few shots over their bow to let them know that I know :)
Thanks.
-- +------------------------------------------------------------+
. | John Saunders - mailto:john@nlc.net.au (EMail) |
,--_|\ | - http://www.nlc.net.au/ (WWW) |
/ Oz \ | - 1800-445-100 or 0418-223-814 (Phone) |
\_,--\_/ | NORTHLINK COMMUNICATIONS P/L - Supplying a professional, |
v | and above all friendly, internet connection service. |
+------------------------------------------------------------+
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00c601bfdb27$2af63810$4ab511cb>