This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IGMP entries fills my logs

Is there anyone who can tell me what these entries are ....
and how I get rid of them from my logs.

Filterlog:
2003-Oct 28 21:34:38 (none) kernel: IGMP Drop: IN=eth1 OUT= MAC=01:00:5e:00:00:01:00:08:ae:01:27:20:08:00 SRC=81.216.250.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=39526 PROTO=2
2003-Oct 28 21:34:38 (none) kernel: IGMP Drop: IN=eth1 OUT= MAC=01:00:5e:00:00:01:00:08:ae:01:27:20:08:00 SRC=81.216.251.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=39527 PROTO=2
2003-Oct 28 21:36:43 (none) kernel: IGMP Drop: IN=eth1 OUT= MAC=01:00:5e:00:00:01:00:08:ae:01:27:20:08:00 SRC=81.216.250.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=39820 PROTO=2
2003-Oct 28 21:36:43 (none) kernel: IGMP Drop: IN=eth1 OUT= MAC=01:00:5e:00:00:01:00:08:ae:01:27:20:08:00 SRC=81.216.251.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=39821 PROTO=2

This thread was automatically locked due to age.

Parents

0 SecApp over 21 years ago

Scope It!
Cancel
Vote Up 0 Vote Down

Cancel
0 Magnus_Lundberg over 21 years ago in reply to SecApp

Sorry, but what does this mean ?
Is there any way to do a rule to drop this ?
and where(in wich file) and how do I do this (webadmin,console) ? (so it will be activated at startup of the asl)
How do I do to keep a rule I have manual added through the console ?
What happens when I add a rule through the console and then do changes through the webadmin is the changes overwritten ?
Does backupfunction in the webadmin save these rules ?
Cancel
Vote Up 0 Vote Down

Cancel
0 firebear_01 over 21 years ago in reply to Magnus_Lundberg

Hi.
theres an other thread a few days ago describing this issue please use the search function.

firebear
Cancel
Vote Up 0 Vote Down

Cancel
0 SecApp over 21 years ago in reply to Magnus_Lundberg

The "Scope It!" was a link; perhaps you neglected to click on it??

If it's that you just don't follow that other post, repost here. It requires adding a rule to a user created supplemental file located in /sbin/init.d/ipfilter.local. Astaro is picky about this file's permissions; must be root/read-only...
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 SecApp over 21 years ago in reply to Magnus_Lundberg

The "Scope It!" was a link; perhaps you neglected to click on it??

If it's that you just don't follow that other post, repost here. It requires adding a rule to a user created supplemental file located in /sbin/init.d/ipfilter.local. Astaro is picky about this file's permissions; must be root/read-only...
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Magnus_Lundberg over 21 years ago in reply to SecApp

Sorry I didn´t see that it was a link ...

I have read the post in the link but I still wonder what happens if I manually edit or customize filter or firewallrules ?
and if I also change the configuration through the webadmin is the manual edited configuration going to be overwritten ?

and how does backup and restore rutines work does these include the configurationfile you mentioned ?

What´s this with the permissions on the scritpfile ?
I´m not a guru on linux how does I do this ??

If I create this file is it run automatically when the asl is rebooted ?
Cancel
Vote Up 0 Vote Down

Cancel
0 SecApp over 21 years ago in reply to Magnus_Lundberg

The /sbin/init.d/ipfilter.local gets loaded after the webadmin rules get applied. The script has to clean up after custom rules you made; otherwise, each time a rule gets added in the webadmin, the script will re-execute and make redundant entries. But if the script deletes old custom rules first, that won't happen.

As for backup and restore, that's a very good question; I don't know! It would be nice if it did...

The file gets run at boot and every time you make a rule change: explicitly or implicitly (like changing a network group definition). Neat, huh?

chmod 400 /sbin/init.d/ipfilter.local

to set the permissions to root read-only.
(The non-numeric way is something like

chmod a=,o=r /sbin/init.d/ipfilter.local

Do an ls -l to see what the permissions are after you chmod. The command-line help for chmod is atrocious; a Search will give better info...
Cancel
Vote Up 0 Vote Down

Cancel
0 Magnus_Lundberg over 21 years ago in reply to SecApp

Thanks for all information ...
But I still get IGMP entries in my logs ...
What is I doing wrong ?

I have created a file sbin/init.d/ipfilter.local with this row
iptables -I INPUT -i eth1 -d 224.0.0.1/24 -p igmp -j DROP

the I ran the chmod 400 /sbin/init.d/ipfilter.local
and then the chmod a=,o=r /sbin/init.d/ipfilter.local

then I restarted the ASL but I still get IGMP entries in my logs.

How do I know that the file were run ? can I do some check  ?perhaps run the file manually ?

I tried to logon through ssh and run the file as root but only got some errormessages and when I tried to run iptables I got the message that the command was not found.

When I then ran iptables as the default loginuser through ssh the command was found  ??

I am not a guru on linux but how could I test that this filterrule.local works ?
Cancel
Vote Up 0 Vote Down

Cancel
0 Magnus_Lundberg over 21 years ago in reply to Magnus_Lundberg

Is there anyone who can tell me what went wrong ....
Cancel
Vote Up 0 Vote Down

Cancel
0 firebear_01 over 21 years ago in reply to Magnus_Lundberg

Hi,
have you tried to type this at command prompt as root and not only write it to the file. But when you type in on command line and everything is fine remember that it is like before after the next rule-changing

firebear
Cancel
Vote Up 0 Vote Down

Cancel