Date: Wed, 29 Jul 1998 16:36:17 -0700 (PDT) From: Doug White <dwhite@resnet.uoregon.edu> To: Andrew Stone <andrew@stone.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: sysctl -w net.inet.udp.log_in_vain=1 causes spurious messages Message-ID: <Pine.BSF.4.00.9807291635460.24795-100000@resnet.uoregon.edu> In-Reply-To: <199807292015.OAA00513@floyd.stone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 29 Jul 1998, Andrew Stone wrote: > (I'm not on this mailing list, so please reply to me, and I'll summarize, thanks!) > > While beefing up the security of our freeBSD gateway, I call these sysctl's from rc.local: > > sysctl -w net.inet.tcp.log_in_vain=1 > sysctl -w net.inet.udp.log_in_vain=1 > sysctl -w kern.securelevel=2 > > > The kernel logs messages like the following, which, since it's from the gateway to the gateway, make no sense and just add noise: > (note 53 is the DNS port, which we allow with ipfw, but these are being logged by the kernel, the IP address is the local gateway IP address) > > Connection attempt to UDP 198.111.108.100:1027 from 198.111.108.100:53 > Connection attempt to UDP 198.111.108.100:1029 from 198.111.108.100:53 > Connection attempt to UDP 198.111.108.100:1031 from 198.111.108.100:53 > Connection attempt to UDP 198.111.108.100:1114 from 198.111.108.100:53 > > Anyway to stop these? I looked online but found nothing. The _log_in_vain sysctl's are a debugging mechanism, I thought. If you want packet logging then use ipfw's logging mechanisms. Doug White | University of Oregon Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant http://gladstone.uoregon.edu/~dwhite | Computer Science Major To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.00.9807291635460.24795-100000>