Date: Wed, 29 Jul 98 14:17:00 -0600 From: Andrew Stone <andrew@stone.com> To: freebsd-questions@FreeBSD.ORG Subject: sysctl -w net.inet.udp.log_in_vain=1 causes spurious messages Message-ID: <199807292015.OAA00513@floyd.stone.com>
next in thread | raw e-mail | index | archive | help
--Apple-Mail-659827788-13 content-type: text/plain; charset=us-ascii content-transfer-encoding: quoted-printable (I'm not on this mailing list, so please reply to me, and I'll = summarize, thanks!) While beefing up the security of our freeBSD gateway, I call these = sysctl's from rc.local: sysctl -w net.inet.tcp.log_in_vain=3D1 sysctl -w net.inet.udp.log_in_vain=3D1 sysctl -w kern.securelevel=3D2 The kernel logs messages like the following, which, since it's from the = gateway to the gateway, make no sense and just add noise: (note 53 is the DNS port, which we allow with ipfw, but these are being = logged by the kernel, the IP address is the local gateway IP address) Connection attempt to UDP 198.111.108.100:1027 from 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1029 from 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1031 from 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1114 from 198.111.108.100:53 Anyway to stop these? I looked online but found nothing. Thanks! Andrew Stone (andrew@stone.com) --Apple-Mail-659827788-13 content-type: text/enriched; charset=us-ascii content-transfer-encoding: quoted-printable (I'm not on this mailing list, so please reply to me, and I'll = summarize, thanks!) While beefing up the security of our freeBSD gateway, I call these = sysctl's from rc.local: sysctl -w net.inet.tcp.log_in_vain=3D1 sysctl -w net.inet.udp.log_in_vain=3D1 sysctl -w kern.securelevel=3D2 The kernel logs messages like the following, which, since it's from the = gateway to the gateway, make no sense and just add noise: (note 53 is the DNS port, which we allow with ipfw, but these are being = logged by the kernel, the IP address is the local gateway IP address) <fixed><smaller>Connection attempt to UDP 198.111.108.100:1027 from = 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1029 from 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1031 from 198.111.108.100:53 Connection attempt to UDP 198.111.108.100:1114 from = 198.111.108.100:53</smaller></fixed> Anyway to stop these? I looked online but found nothing. Thanks! Andrew Stone (andrew@stone.com) --Apple-Mail-659827788-13-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807292015.OAA00513>