patbier Posted April 3, 2004 Report Share Posted April 3, 2004 (edited) Hello, I have a problem with shorewall. It spends time writing warnings in /var/log/messages and /var/log/syslog Like this : Apr 3 11:34:32 bureau kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC= SRC=12.216.*.* DST=213.103.*.* LEN=48 TOS=0x00 PREC=0x00 TTL=112 ID=12341 DF PROTO=TCP SPT=4575 DPT=21191 WINDOW=64240 RES=0x00 SYN URGP=0 The problem is that the size of /var/log/messages & /var/log/syslog are now > 20 Mo ! It didn't do this in mdk 9.2 I'm under mdk10 with kernel 2.6.3-7mdk and shorewall-1.4.8-3mdk Do you have any idea ? moved to security by Ixthusdan Edited April 9, 2004 by Ixthusdan Quote Link to comment Share on other sites More sharing options...
patbier Posted April 9, 2004 Author Report Share Posted April 9, 2004 Pierre Lo Cicero gave me the answer : in /etc/shorewall/policy, there is : masq net ACCEPT loc net ACCEPT fw net ACCEPT net all DROP info all all REJECT info just transform in : masq net ACCEPT loc net ACCEPT fw net ACCEPT net all DROP all all REJECT and it works. hopes that help another person. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.