Date: Sun, 16 Aug 1998 14:20:03 +1000 (EST) From: Darren Reed <avalon@coombs.anu.edu.au> To: kkennawa@physics.adelaide.edu.au (Kris Kennaway) Cc: security@FreeBSD.ORG Subject: Re: Capturing IPFW denied packets Message-ID: <199808160420.VAA28267@hub.freebsd.org> In-Reply-To: <Pine.OSF.3.90.980809145527.30908A-100000@bragg> from "Kris Kennaway" at Aug 9, 98 03:03:59 pm
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Kris Kennaway, sie said: [...] > Is there any way I can set things up to log the contents of the packets > which fail the ipfw filter? Can anyone think of legitimate reasons these > sites might want to know my identity or information about my DNS, other > than trying to harvest addresses for spammers? ipfilter which will run on freebsd can do the above. using ordinary rules, upto 128* data bytes from a packet will be logged or the blocked packet can be sent to another IP# (fake or real). e.g. block in log body proto udp from any to any port = 53 Darren * - this could be increased if you really wanted... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808160420.VAA28267>