Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 30 Jul 1998 01:47:05 -0700 (PDT)
From:      "Jan B. Koum " <jkb@best.com>
To:        Andrew Stone <andrew@stone.com>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: sysctl -w net.inet.udp.log_in_vain=1 causes spurious messages
Message-ID:  <Pine.BSF.3.96.980730014315.17374A-100000@shell6.ba.best.com>
In-Reply-To: <199807292015.OAA00513@floyd.stone.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

	Hello,

	I guess this is something I will have to add to security docs (how
to undo things).
	To turn off log_in_vain simply do

# sysctl -w net.inet.tcp.log_in_vain=0
# sysctl -w net.inet.tcp.log_in_vain=0

	(1 turns things on, 0 turns things off).
	I guess I should also add to the How-To that this is sysctl change
will generate a lot of noice.

-- Yan

Jan Koum                  jkb@best.com |  "Turn up the lights; I don't want
www.FreeBSD.org --  The Power to Serve |   to go home in the dark."
"Write longer sentences - they are paying us a lot of money"

On Wed, 29 Jul 1998, Andrew Stone wrote:

>(I'm not on this mailing list, so please reply to me, and I'll summarize, thanks!)
>
>While beefing up the security of our freeBSD gateway, I call these sysctl's from rc.local:
>
>sysctl -w net.inet.tcp.log_in_vain=1
>sysctl -w net.inet.udp.log_in_vain=1
>sysctl -w kern.securelevel=2
>
>
>The kernel logs messages like the following, which, since it's from the gateway to the gateway, make no sense and just add noise:
>(note 53 is the DNS port, which we allow with ipfw, but these are being logged by the kernel, the IP address is the local gateway IP address)
>
>Connection attempt to UDP 198.111.108.100:1027 from 198.111.108.100:53
>Connection attempt to UDP 198.111.108.100:1029 from 198.111.108.100:53
>Connection attempt to UDP 198.111.108.100:1031 from 198.111.108.100:53
>Connection attempt to UDP 198.111.108.100:1114 from 198.111.108.100:53
>
>Anyway to stop these? I looked online but found nothing.
>
>Thanks!
>
>Andrew Stone (andrew@stone.com)
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980730014315.17374A-100000>