Bad confusion about what to do with auth.
Steven W. Orr
email hidden
Wed Feb 22 04:45:54 CET 2006
I get a lot of these in my syslog
Feb 21 22:14:33 saturn kernel: [FIAIF_SCAN]:IN= OUT=eth0
SRC=207.172.210.41
DST=67.98.202.21 LEN=40 TOS=0x00
PREC=0x00 TTL=255 ID=0 DF PROTO=TCP SPT=113
DPT=617
I am the 207 addr.
I have the following in my zone.ext:
OUTPUT[1]="ACCEPT tcp
auth,smtp,domain,nicname,finger,http,pgpkeyserver,cvspserver
0.0.0.0/0=>0.0.0.0/0"
and I also have this:
REPLY_AUTH="EXT tcp-reset tcp auth 0.0.0.0/0=>0.0.0.0/0"
The goal is to send a tcp-reset if someone send me an ident request.
So I have two questions.
First, what does that message in syslog mean?
Second. is this bad?
Sorry I don't understand, but I hope to learn this better.
TIA
--
Time flies like the wind. Fruit flies like a banana. Stranger things have .0.
happened but none stranger than this. Does your driver's license say Organ ..0
Donor?Black holes are where God divided by zero. Listen to me! We are all- 000
individuals! What if this weren't a hypothetical question?
steveo at syslang.net
More information about the fiaif
mailing list