Mike Mestnik wrote:
That's surprising...
It could be pkts from a non IP interface(maby your loopback?) or from a non IP protocol? Even
so
they should have been caught by your blank rule. This would seam like a problem, one that
could
be explotable. See if you can catch the pkts in question with tcpdump or the like, that might
be
helpfull.
Is there any netfilter target which redirects packets into one or more
files? An existing FILELOGGER target would be great:
iptables -P INPUT -j FILELOGGER --d-folder /slippedpackets/
Then i could change the chain policy to save these packets in an easier
way than using tcpdump...
--
Greetings
Bjoern Schmidt
--
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org