[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [suse-security] SuSE Firewall and CUPS (UDP rules)?
On Fri, 17 Sep 2004, Maxim A Belushkin wrote:
> I set FW_SERVICES_EXT_UDP="631" and FW_SERVICES_QUICK_UDP="631" (this
> one just-in-case), the rest default from what the Yast tool left it at,
> in /etc/sysconfig/SuSEfirewall2, and ran /sbin/rcSuSEfirewall2 restart.
> In the messages:
> SFW2-DROP-BCASTe IN=eth0 OUT= MAC=<snip> SRC=<snip> DST=<snip> LEN=187
> TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=631 DPT=631 LEN=167
> *faint whining* What am I missing? :(
SFW2-DROP-BCASTe means "SuSEfirewall2 DROP Broadcast
so i would suggest checking for FW_ALLOW_FW_BROADCAST and
you could also start "/sbin/SuSEfirewall2 test" if you are in a
secure environment (test mode lets anything pass but logs).
BINGO: work smarter
--- Engelbert Gruber -------+
SSG Fintl,Gruber,Lassnig /
A6170 Zirl Innweg 5b /
Tel. ++43-5238-93535 ---+
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here