On Sat, Jan 24, 2004 at 11:40:49AM +0100, Joris Huizer wrote:
> Now, when I'm on one of the tty' terminals, I get this message each time:
>
> INPUT packet died: IN=eth0 OUT= MAC= SRC=10.0.0.150 DST=10.0.0.255
> LEN=131 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=631 DPT=631 LEN=111
>
> it looks like a lot of packages with identical properties, are sent to
> my computer; Maybe it's important to know, my internet connection is
> dhcp and it uses dynamic IP addressing (could that cause such a problem?)
This all is mostly irrelevant. Read some good TCP/IP intro if you were
interested.
> So basically, I've got two questions,
> What could be causing this?
% grep 631 /etc/services
ipp 631/tcp # Internet Printing Protocol
ipp 631/udp # Internet Printing Protocol
(1) AFAICT, 10.0.0.150 looks for a printing server (.255 address
probably is a ``broadcast'' address, so this is not like they were
trying to connect to _you_ specifically, they just are shouting in the
wild, hoping _someone_ will respond). I'd look in the IPP RFC (google),
and/or fire up ethereal(1), if I wanted to know precisely what's going
on here.
(2) you have a `LOG' target specified, that matches this packet.
``iptables -vL'' will show you.
> How can I make iptables stop generating output on the tty - and let it
> write in some kind of logfile instead?
man iptables && man syslog. You might consider disabling logging
temporarily, by removing the LOG entries (iptables-{sav,restor}e(8))
might be of some help, here), if the cadence is unbearable.
HTH.
--
Jan Minar "Please don't CC me, I'm subscribed." x 9
Attachment:
pgppV3x3vY4YH.pgp
Description: PGP signature