[suse-sles-e] SLES9 SuSEfirewall2 doesn't have FW_SERVICES_DROP_EXT

From: Michael James (Michael.James_at_csiro.au)
Date: Thu Jul 06 2006 - 02:34:30 CEST

• Next message: Carlos Lorenzo Matés: "[suse-sles-e] SOLVED Re: [suse-sles-e] Problems with the last kernel patch"
• Previous message: Mike Petersen: "Re: [suse-sles-e] macs and CIFS/SAMBA"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Michael James <Michael.James@csiro.au>
Date: Thu, 6 Jul 2006 10:34:30 +1000
Message-Id: <200607061034.30269.Michael.James@csiro.au>
Subject: [suse-sles-e] SLES9 SuSEfirewall2 doesn't have FW_SERVICES_DROP_EXT

There is an annoying (windows) box filling my logs
 by trying to talk SNMP to my servers.

On SuSE-9.3 there are 2 useful parameters to set
 FW_SERVICES_DROP_EXT=0/0,udb,snmp
 FW_SERVICES_REJECT_EXT=0/0,tcp,telnet

This says don't let them SNMP or telnet, and don't log the attempt.

It's not there in SLES-9,
 anyone know another way to get them dumped silently.
Or should I do what I've done for so many other RPMs
 and upgrade it to the 9.3 ones.

michaelj

-- 
Michael James                         michael.james@csiro.au
System Administrator                    voice:  02 6246 5040
CSIRO Bioinformatics Facility             fax:  02 6246 5166
PS: As a workaround I'm trying ALLOWING snmp in Susefirewall2.
	(There's nothing listening on that port anyway)
---------------------------------------------------------------------
To unsubscribe, e-mail: suse-sles-e-unsubscribe@suse.com
For additional commands, e-mail: suse-sles-e-help@suse.com

• Next message: Carlos Lorenzo Matés: "[suse-sles-e] SOLVED Re: [suse-sles-e] Problems with the last kernel patch"
• Previous message: Mike Petersen: "Re: [suse-sles-e] macs and CIFS/SAMBA"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Thu Jul 06 2006 - 02:34:54 CEST