From: Rune K. <run...@gm...> - 2005-12-02 22:49:00
|
Hi, Are you sure that there isn't some computer on your local net that is misconfigured to use 192.168.10.20? It could be a laptop that's configured for some other net? When you run ethereal, you can see whether the offending package comes from your internal or external interface (assuming that you are running ethereal on your internet-router). If you want to get a slight protection against packages with a spoofed source ip-address, you can add the norfc1918 option to the external interface of your router (in the interfaces file). See http://www.shorewall.net/Documentation.htm#Interfaces Hope this helps Rune (run...@gm...) On 12/2/05, SteZZz <st...@gm...> wrote: > > hi i have a little problem, in my internet connection there are some > intruders i think > i spotted some request from an internal ip adres 192.168.10.20 but i don'= t > have that ip adress inserted into my network, there is only 192.168.0rang= e. > i did a ethereal scan and he spotted that it was a snmp protocol, this is > for managing a network and stuff like that, > well i wanna put my security more up in my shorewall so nobody can get > in.... > hope u can help me with this, just ask me for what kinda info u need so i > can post it > > -- > Gr. SteZZz |