From: PSR (rkimber@ntlworld.com)
Date: Sun May 13 2001 - 14:53:59 PDT
Very many thanks indeed for the responses.
That seems to have done the trick.
There has been a perceptible increase in the level of human happiness
(... well I perceived it anyway).
- Richard.
On Sunday 13 May 2001 20:52, you wrote:
> Assuming eth0 is your external interface:
>
> $IPCHAINS -A input -p tcp -s $REMOTENET -d $REMOTENET 631 -i $OUTERIF -j
> DENY
> $IPCHAINS -A input -p udp -s $REMOTENET -d $REMOTENET 631 -i $OUTERIF -j
> DENY
>
> You can put it in the file:
>
> /usr/local/pmfirewall/pmfirewall.rules.local
>
> And stick it in after the line reading:
>
> #### END OF EXAMPLES ###
>
> If you choose to place it at the end of the file, change the "-A" (APPEND)
> to "-I" (INSERT), and the rule will be placed at the top of the ruleset.
>
> --Greg
>
> ----- Original Message -----
> From: "PSR" <rkimber@ntlworld.com>
>
> > I have a large number of log entries of the form:
> > May 13 18:55:23 pc68-car9 kernel: Packet log: input DENY eth0 PROTO=17
> > 62.252.54.68:631 255.255.255.255:631 L=145 S=0x00 I=17192 F=0x0000 T=64
>
> (#34)
>
> > These seem to be harmless and relate, I think to the CUPS server. What
>
> rule
>
> > would I need to add, and at what point in the file, to
>
> pmfirewall.rules.local
>
> > in order to turn this logging off, but not turn off any other logging?
-- rkimber@ntlworld.com http://www.psr.keele.ac.uk/area/uk/ge01.htm British General Election 2001 **************************************************************************** * To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall" * in the message body to majordomo@pointman.org. Please direct other * questions, comments, or problems to pmfirewall-owner@pointman.org. * * Need answers fast? Check the list archive located at: * http://www.pointman.org/PMFirewall/list-archive/ *
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:41:36 PDT