Re: IPF 4.1 does not block broadcasts
This is a discussion on Re: IPF 4.1 does not block broadcasts within the IPFilter forums, part of the System Security and Security Related category; On Fri, Feb 20, 2004 at 09:50:48AM +0100, Hans Werner Strube wrote: > > From: Guido van Rooij ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-20-2004
|
|||
|
|||
Re: IPF 4.1 does not block broadcasts
On Fri, Feb 20, 2004 at 09:50:48AM +0100, Hans Werner Strube wrote:
> > From: Guido van Rooij Wed, 18 Feb 2004 23:27:22 +0100 > > > Weird. Can you change the second rule: > > pass in quick on elxl0 proto udp from x.y.z.0/24 to x.y.z.h/32 keep state > > to > > pass in log quick on elxl0 proto udp from x.y.z.0/24 to x.y.z.h/32 keep state > > > > and check if the broadcasts are logged? > > They are not logged and also not visible with ipfstat -t. > I also tried > block in log quick on elxl0 proto udp from x.y.z.0/24 to x.y.z.255/32 > as the very first rule. Also neither blocks nor logs the broadcasts. > Ply try a block in log from any to any and block out log from any to any, and see if this blocks the broadcasts. -Guido 
|
Linear Mode
