Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 03 Sep 1997 11:52:29 +0200
From:      Poul-Henning Kamp <phk@critter.freebsd.dk>
To:        ArkanoiD <ark@paranoid.convey.ru>
Cc:        firewalls@greatcircle.com, freebsd-security@freebsd.org, freebsd-hackers@freebsd.org
Subject:   Re: log connection attempts? 
Message-ID:  <4926.873280349@critter.freebsd.dk>
In-Reply-To: Your message of "Wed, 03 Sep 0136 12:40:07 %2B0400." <203609030840.MAA14571@paranoid.convey.ru> 

next in thread | previous in thread | raw e-mail | index | archive | help
In message <203609030840.MAA14571@paranoid.convey.ru>, ArkanoiD writes:
>nuqneH,
>
>Did anyone try to patch the kernel to log connection attempts for ports
>(tcp and maybe udp) where no program accepts connection? (2.1.7)

Set these two sysctl variables to non-zero:
	net.inet.tcp.log_in_vain: 0
	net.inet.udp.log_in_vain: 0


--
Poul-Henning Kamp             FreeBSD coreteam member
phk@FreeBSD.ORG               "Real hackers run -current on their laptop."



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4926.873280349>