Re: mysterious ipchains deny from 192.168.. ??

To: will trillich <will@serensoft.com>
Cc: debian-user@lists.debian.org
Subject: Re: mysterious ipchains deny from 192.168.*.* ??
From: Brandon High <armitage@freaks.com>
Date: Tue, 10 Apr 2001 12:52:22 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.4.21.0104101248250.10830-100000@xenophobe.freaks.com>
In-reply-to: <[🔎] 20010410140319.A30983@serensoft.com>

On Tue, 10 Apr 2001, will trillich wrote:

> here's a logcheck message i got recently, where ipchains is
> logging certain unwelcome hits (based on what's primarily the
> default ipmasq filtering rules)--
> 
> ----- Forwarded message from root <root@serensoft.com> -----
> 
> Security Violations
> =-=-=-=-=-=-=-=-=-=
> Apr  8 17:45:10 server kernel: Packet log: input DENY eth0 PROTO=1 172.149.223.27:10 224.0.0.2:0 L=28 S=0x00 I=11290 F=0x0000 T=128 (#7)

PROTO=1 means that it was an ICMP packet. Someone is trying to ping you.

Look at /usr/include/netinet/ip_icmp.h for an explanation of ICMP types. The
type is listed after the : on your host address.

Type 0 is ICMP_ECHOREPLY

-B

-- 
Brandon High                                     armitage@freaks.com
War is Peace. Slavery is Freedom. AOL is the Internet.

Reply to:

Follow-Ups:
- Re: mysterious ipchains deny from 192.168.*.* ??
  - From: will trillich <will@serensoft.com>

References:
- mysterious ipchains deny from 192.168.*.* ??
  - From: will trillich <will@serensoft.com>

Prev by Date: Re: koffice -- how-to?
Next by Date: Re: Progeny Debian
Previous by thread: mysterious ipchains deny from 192.168.*.* ??
Next by thread: Re: mysterious ipchains deny from 192.168.*.* ??
Index(es):
- Date
- Thread

Re: mysterious ipchains deny from 192.168.*.* ??

Re: mysterious ipchains deny from 192.168.. ??