FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

 
 
LinkBack Thread Tools
 
Old 04-10-2008, 03:24 AM
Amit Uttamchandani
 
Default Firestarter dumping blocked events to console

Hi there,

I installed firestarter on Debian Etch. From my understanding it is pretty much a front end to the ipstarter firewall. Everything has been going great except for one minor annoyance...

Every time I connect to the campus network I get bombarded with broadcast SMB packets...fro my understanding, addresses of printers and shared drives...iTunes maybe?

Anyways, as soon as the laptop boots..i see all the dmesgs and everything is fine...when the iptables starts ... it starts dumping everything to the console. Thus, I don't know when start up has completed and the login prompt has been displayed (I don't use an X login manager). I just blindly type my username and password and hope that it works.

So is there anyway to redirect the output of the blocked connections for iptables?

Here is the tail of dmesg by the way...

Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=130.166.175.175 DST=130.166.175.255 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=27327 PROTO=UDP SPT=137 DPT=137 LEN=58
Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=130.166.173.13 DST=130.166.175.255 LEN=229 TOS=0x00 PREC=0x00 TTL=128 ID=40118 PROTO=UDP SPT=138 DPT=138 LEN=209

And there are hundreds of these lines...I replaced all the destination mac addresses with XX values...

Thanks,
Amit


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 04-10-2008, 04:25 AM
Andrew Sackville-West
 
Default Firestarter dumping blocked events to console

On Wed, Apr 09, 2008 at 08:24:40PM -0700, Amit Uttamchandani wrote:
> Hi there,
>
> I installed firestarter on Debian Etch. From my understanding it is pretty much a front end to the ipstarter firewall. Everything has been going great except for one minor annoyance...
...
>
> Anyways, as soon as the laptop boots..i see all the dmesgs and everything is fine...when the iptables starts ... it starts dumping everything to the console. Thus, I don't know when start up has completed and the login prompt has been displayed (I don't use an X login manager). I just blindly type my username and password and hope that it works.
>
> So is there anyway to redirect the output of the blocked connections for iptables?
>
> Here is the tail of dmesg by the way...
>
> Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=130.166.175.175 DST=130.166.175.255 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=27327 PROTO=UDP SPT=137 DPT=137 LEN=58
> Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=130.166.173.13 DST=130.166.175.255 LEN=229 TOS=0x00 PREC=0x00 TTL=128 ID=40118 PROTO=UDP SPT=138 DPT=138 LEN=209
>

look at /etc/sysctl.conf, there is a line you can uncomment to reduce
low level kernel messages on the console:

kernel.printk = 4 4 1 7

also, look at the log level you are using in your firestarter
config. I'm not familiar with firestarter, but shorewall lets you set
the log level of different kinds actions the firewall performs. I'm
confident there is a way to do it through firestarter as well.

A
 
Old 04-10-2008, 04:33 AM
"Mumia W.."
 
Default Firestarter dumping blocked events to console

On 04/09/2008 10:24 PM, Amit Uttamchandani wrote:

Hi there,

I installed firestarter on Debian Etch. From my understanding it is
pretty much a front end to the ipstarter firewall. Everything has
been going great except for one minor annoyance...


Every time I connect to the campus network I get bombarded with
broadcast SMB packets...fro my understanding, addresses of printers
and shared drives...iTunes maybe?

[...]


Perhaps you need to set the logging message level through dmesg. Look at
"man dmesg" and investigate the "-n" option.


Once you've found the correct value to provide for "-n," you would place
the appropriate command in /etc/init.d/rc.local or a custom init script,
e.g.:


dmesg -n4

On my own machine, I wouldn't have any reservation with placing the
command inside of /etc/init.d/firestarter, but that's just me ;-)


Also, you can do the same thing by setting the "-c" option for klogd
(/etc/init.d/klogd). Good luck.




--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 

Thread Tools




All times are GMT. The time now is 07:41 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org