Date: Sat, 8 Apr 2000 10:51:51 -0500 (CDT) From: Glenn Johnson <glennpj@bayouhome.net> To: FreeBSD-gnats-submit@freebsd.org Subject: conf/17865: Add ppp deny keep alive filter entries for NetBIOS Message-ID: <200004081551.KAA00871@gforce.johnson.home>
next in thread | raw e-mail | index | archive | help
>Number: 17865
>Category: conf
>Synopsis: example ppp filters to keep NetBIOS from keeping link up
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Sat Apr 8 09:00:01 PDT 2000
>Closed-Date:
>Last-Modified:
>Originator: Glenn Johnson
>Release: FreeBSD 4.0-STABLE i386
>Organization:
>Environment:
>Description:
NetBIOS packets will keep a ppp link up longer than desirable in
ppp -auto mode. This would apply to people with a network using Samba
and ppp -auto as their Internet link. Example filter entries are in
/usr/share/examples/ppp/ppp.conf.sample to show how to keep NetBIOS
packets from triggering a dial. The enclosed patch adds example entries
to show how to keep NetBIOS packets from keeping the connection alive
unnecessarily.
>How-To-Repeat:
>Fix:
Apply the enclosed patch to
/usr/src/share/examples/ppp/ppp.conf.sample.
--- /usr/src/share/examples/ppp/ppp.conf.sample.orig Tue Apr 4 17:27:14 2000
+++ /usr/src/share/examples/ppp/ppp.conf.sample Tue Apr 4 17:31:02 2000
@@ -218,8 +218,14 @@
set filter alive 1 deny udp dst eq 520 # routed
set filter alive 2 deny udp src eq 513 # rwhod
set filter alive 3 deny udp src eq 525 # timed
- set filter alive 4 deny 0/0 MYADDR icmp # Ping to us from outside
- set filter alive 5 permit 0/0 0/0
+ set filter alive 4 deny udp src eq 137 # NetBIOS name service
+ set filter alive 5 deny udp src eq 138 # NetBIOS datagram service
+ set filter alive 6 deny udp src eq 139 # NetBIOS session service
+ set filter alive 7 deny udp dst eq 137 # NetBIOS name service
+ set filter alive 8 deny udp dst eq 138 # NetBIOS datagram service
+ set filter alive 9 deny udp dst eq 139 # NetBIOS session service
+ set filter alive 10 deny 0/0 MYADDR icmp # Ping to us from outside
+ set filter alive 11 permit 0/0 0/0
#
# And in auto mode, we don't want certain packets to cause a dialup
#
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200004081551.KAA00871>