RE: [ipblocker-devel] IP Blocker v2
Brought to you by:
ipblocker
Menu
▾
▴
RE: [ipblocker-devel] IP Blocker v2
|
From: Brian W. <brw...@ab...> - 2005-04-03 00:21:56
|
Here is some debug output for the session with the router .. Note v1.2 worked fine .. absag1# 176076: 30w3d: Telnet3: 1 1 251 1 176077: 30w3d: TCP3: Telnet sent WILL ECHO (1) 176078: 30w3d: Telnet3: 2 2 251 3 176079: 30w3d: TCP3: Telnet sent WILL SUPPRESS-GA (3) 176080: 30w3d: Telnet3: 80000 80000 253 24 176081: 30w3d: TCP3: Telnet sent DO TTY-TYPE (24) 176082: 30w3d: Telnet3: 10000000 10000000 253 31 176083: 30w3d: TCP3: Telnet sent DO WINDOW-SIZE (31) 176084: 30w3d: TCP3: Telnet received DO SUPPRESS-GA (3) 176085: 30w3d: TCP3: Telnet received WILL TTY-TYPE (24) 176086: 30w3d: Telnet3: 1 1 251 1 176087: 30w3d: TCP3: Telnet sent WILL ECHO (1) 176088: 30w3d: Telnet3: 2 2 251 3 176089: 30w3d: TCP3: Telnet sent WILL SUPPRESS-GA (3) 176090: 30w3d: Telnet3: 80000 80000 253 24 176091: 30w3d: TCP3: Telnet sent DO TTY-TYPE (24) 176092: 30w3d: Telnet3: 10000000 10000000 253 31 176093: 30w3d: TCP3: Telnet sent DO WINDOW-SIZE (31) 176094: 30w3d: TCP3: Telnet received DO SUPPRESS-GA (3) 176095: 30w3d: TCP3: Telnet received WILL TTY-TYPE (24) -----Original Message----- From: ipb...@li... [mailto:ipb...@li...] On Behalf Of Brian Watters Sent: Saturday, April 02, 2005 3:35 PM To: ipb...@li... Subject: [ipblocker-devel] IP Blocker v2 Overwrite ... -----Original Message----- From: Rob Patrick [mailto:ro...@rp...] Sent: Saturday, April 02, 2005 9:52 AM To: Brian Watters Subject: Re: IP Blocker v2 Are you using type Dynamic or Overwrite? ----- Original Message ----- From: "Brian Watters" <brw...@ab...> To: "Rob Patrick" <ro...@rp...> Sent: Friday, April 01, 2005 11:48 PM Subject: Re: IP Blocker v2 > Rob, > > Nope as you saw in the detail I sent you it appears to be talking to > the router without issue .. However no info is being written to the > interface .. and the file that written on the server where IP Blocker > is (The one that waits for CRON to pick it up) is seen but never > deleted . I would assume this is because it does not think it finished > which of course it didn't .. ?? > > BRW > > Rob Patrick wrote: > >> Are you at least getting the block successfully deployed? >> >> From the web interface, block an address, then do a show acl to see >> that it's there. >> If good, now remove it using the web interface. >> Check again show acl to see that it's gone. >> >> The cron task is really a cleanup function - I'll look into it, but I >> don't (yet) see the errors here. >> >> ----- Original Message ----- From: "Brian Watters" >> <brw...@ab...> >> To: "'Rob Patrick'" <ro...@rp...> >> Sent: Friday, April 01, 2005 7:39 PM >> Subject: RE: IP Blocker v2 >> >> >>> Still no joy :( .. >>> >>> Output from command /var/www/html/ipblocker/run-from-cron.pl .. >>> >>> Use of uninitialized value in string at >>> /usr/lib/perl5/site_perl/5.8.0/Net/IPBlocker.pm line 135, <DATA> line 1. >>> >>> >>> Any other ideas?? >>> >>> BRW >>> >>> >>> >>> >>> -----Original Message----- >>> From: Rob Patrick [mailto:ro...@rp...] >>> Sent: Friday, April 01, 2005 3:56 AM >>> To: Brian Watters >>> Subject: Re: IP Blocker v2 >>> >>> You should be able to simply delete the lines for sucmd and supass >>> in your node config file and it'll work. >>> >>> sucmd = enable >>> supass = password >>> >>> Delete those two lines from the config and let me know how it works >>> for ya. >>> >>> I've got a router here setup to drop the user at the enable # prompt >>> right after login via username & password, and this works okay. >>> >>> >>> ----- Original Message ----- From: "Brian Watters" >>> <brw...@ab...> >>> To: "'Rob Patrick'" <ro...@rp...> >>> Sent: Thursday, March 31, 2005 11:39 PM >>> Subject: IP Blocker v2 >>> >>> >>>> Ok ... So this is the last one .. Forgot this >>>> >>>> ###################### >>>> [root@abs160 logs]# tail -f audit.log >>>> Mar 31 05 20:14:29.231 clqm.pl [29191]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:14:29.486 clqm.pl [29191]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:14:40.521 clqm.pl [29191]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> Mar 31 05 20:20:01.900 clqm.pl [29203]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> ----- blocking session started >>>> Mar 31 05 20:20:01.909 clqm.pl [29203]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:20:01.951 clqm.pl [29203]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:20:12.971 clqm.pl [29203]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> Mar 31 05 20:27:18.572 clqm.pl [29230]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> ----- blocking session started >>>> Mar 31 05 20:27:18.581 clqm.pl [29230]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:27:18.819 clqm.pl [29230]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:27:29.831 clqm.pl [29230]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> Mar 31 05 20:28:45.911 clqm.pl [29335]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> ----- blocking session started >>>> Mar 31 05 20:28:45.920 clqm.pl [29335]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:28:46.209 clqm.pl [29335]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:28:57.221 clqm.pl [29335]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> Mar 31 05 20:29:57.855 clqm.pl [29346]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> ----- blocking session started >>>> Mar 31 05 20:29:57.864 clqm.pl [29346]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:29:57.904 clqm.pl [29346]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:30:08.923 clqm.pl [29346]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> Mar 31 05 20:32:10.756 clqm.pl [29360]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> ----- blocking session started >>>> Mar 31 05 20:32:10.765 clqm.pl [29360]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> uid 48, acl deny ip 192.168.70.0 0.0.0.255 any log-input >>>> Mar 31 05 20:32:11.343 clqm.pl [29360]: Net::IPBlocker::IOS - >>>> 204.238.56.1: >>>> login >>>> Mar 31 05 20:32:22.361 clqm.pl [29360]: 48 - cron - >>>> 1112326724_192.168.70.0-24 - 1 while acting on >>>> 1112326724_192.168.70.0-24 >>>> ##################### >>>> >>>> >>>> BRW >>>> >>>> >>>> >>> >>> >> > ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ ipblocker-devel mailing list ipb...@li... https://lists.sourceforge.net/lists/listinfo/ipblocker-devel |
