[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] [Qube2] ICMP IP Filtering

Subject: Re: [cobalt-users] [Qube2] ICMP IP Filtering
From: Malcolm McLeary <mim@xxxxxxxxxx>
Date: Wed May 3 16:18:18 2000

Hi Mike,

on 4/5/00 7:19 AM, Mike Vanecek at nospam99@xxxxxxxxxxxx wrote:

> :>Actually the book focuses on ipchains and it does have a -l option to log
> :>packets which match the criteria.
> :>
> :>Although the book uses ipchains semantics for all the examples the theory
> :>is "compatible" with ipfwadm (as used on the Qube2) ... Appendix B lists
> :>the worked example for ipfwadm.
> 
> Looks interesting. I did find something similar in ipfwadm:
> 
> -o     Turn  on  kernel  logging of matching packets.  When this option
> is set for a rule, the Linux kernel will print some information of  all
> matching  packets (like  most  IP header fields) via printk().  This option
> will only be effective when  the  Linux  kernel  is  compiled  with
> CONFIG_IP_FIREWALL_VERBOSE defined.  This option is only valid in combination
> with the append, insert or delete command.
> 
> How much do you want to bet that the kernel was not compiled with
> CONFIG_IP_FIREWALL_VERBOSE defined?  Now I gotta figure out how to find out
> what was set when the kernel was compiled?  Even if I find out how to do that
> and the kernel was compiled without it defined, then what do I do then?
> 
> Only the shadow knows ...

Absolutely ... the reference does mention that certain "features" are
available ONLY if options were turned on at compile time (for earlier
versions of Linux).  Red Hat 6.1 comes with ipchains and apparently the
defaults are now what was previously options.

I guess it is too much to hope for to have Cobalt release such a MAJOR
update.

Cheers,  Malcolm

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

                       Information Alchemy Pty Ltd
                             ACN 089 239 305
                           Canberra, Australia

Malcolm McLeary                                  Mobile:   0412 636 086
Managing Director                                Email:  mim@xxxxxxxxxx

     This message was sent using Outlook Express 5.0 for Macintosh.

Follow-Ups:
- [cobalt-users] Can I STOP the WARNING emails?
  - From: Leo

References:
- Re: [cobalt-users] [Qube2] ICMP IP Filtering
  - From: Mike Vanecek

Prev by Date: RE: [cobalt-users] Front Page muck up..
Next by Date: RE: [cobalt-users] What are you guys using
Previous by thread: Re: [cobalt-users] [Qube2] ICMP IP Filtering
Next by thread: [cobalt-users] Can I STOP the WARNING emails?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index