Hi,
i saw that access to the WebAdmin is logged as accepted packets in the packet filter live log.
I think unnecessary because i don't wanna look the accepted packets by default in the live log.
I'm wondering because the other rules(DNS-Proxy, SMTP-Proxy etc.) in AUTO_INPUT are just only accepted and not logged.
[ QUOTE ]
Chain AUTO_INPUT (1 references)
pkts bytes target prot opt in out source destination
0 0 LOGDROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1:65535 dpt:22
0 0 LOGACCEPT tcp -- * * 192.168.200.152 0.0.0.0/0 tcp spts:1024:65535 dpt:443
0 0 LOGACCEPT tcp -- * * 192.168.200.222 0.0.0.0/0 tcp spts:1024:65535 dpt:443
0 0 LOGACCEPT tcp -- * * 192.168.200.12 0.0.0.0/0 tcp spts:1024:65535 dpt:443
0 0 LOGACCEPT tcp -- * * 192.168.2.199 0.0.0.0/0 tcp spts:1024:65535 dpt:443
17 816 LOGACCEPT tcp -- * * 192.168.2.222 0.0.0.0/0 tcp spts:1024:65535 dpt:443
0 0 LOGDROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 dpt:443
0 0 ACCEPT tcp -- * * 192.168.0.0/16 0.0.0.0/0 tcp spts:53:65535 dpt:53
0 0 ACCEPT udp -- * * 192.168.0.0/16 0.0.0.0/0 udp spts:53:65535 dpt:53
0 0 ACCEPT tcp -- * * 192.168.0.0/16 0.0.0.0/0 tcp spts:1:65535 dpt:8080
0 0 ACCEPT tcp -- * * 192.168.2.222 0.0.0.0/0 tcp spts:1:65535 dpt:25
0 0 ACCEPT tcp -- * * 192.168.2.199 0.0.0.0/0 tcp spts:1:65535 dpt:25
0 0 ACCEPT tcp -- * * 192.168.200.152 0.0.0.0/0 tcp spts:1:65535 dpt:25
0 0 ACCEPT tcp -- * * 192.168.200.221 0.0.0.0/0 tcp spts:1:65535 dpt:25
[/ QUOTE ]
Any chance to disable without removing Hosts out of 'Allowed Networks for ASL WebAdmin" ?
greetz
Claus
