[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] SuSE Firewall and CUPS (UDP rules)?



On Fri, 17 Sep 2004, Maxim A Belushkin wrote:

> I set FW_SERVICES_EXT_UDP="631" and FW_SERVICES_QUICK_UDP="631" (this
> one just-in-case), the rest default from what the Yast tool left it at,
> in /etc/sysconfig/SuSEfirewall2, and ran /sbin/rcSuSEfirewall2 restart.
>
> In the messages:
>
> SFW2-DROP-BCASTe IN=eth0 OUT= MAC=<snip> SRC=<snip> DST=<snip> LEN=187
> TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=631 DPT=631 LEN=167
>
> *faint whining* What am I missing? :(

SFW2-DROP-BCASTe means "SuSEfirewall2 DROP Broadcast

so i would suggest checking for FW_ALLOW_FW_BROADCAST and
DEV_EXT_BCAST ?

you could also start "/sbin/SuSEfirewall2 test" if you are in a
secure environment (test mode lets anything pass but logs).

cheers

-- 
 BINGO: work smarter
 --- Engelbert Gruber -------+
  SSG Fintl,Gruber,Lassnig  /
  A6170 Zirl   Innweg 5b   /
  Tel. ++43-5238-93535 ---+

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here