Bugs in logging and example rules syntax
Status: Inactive
Brought to you by:
jbm_sf
Menu
▾
▴
#3 Bugs in logging and example rules syntax
Hi!
1) On W2K SP3 not oll dropped packets was written to
log. In particular requests to unsolicited DNS server from
workstation protected with PktFilter was successfully
dropped but not logged. The rules DNS name resolution
were:
pass out on eth0 proto udp from <local_ip> port > 1023
to <dns_ip> port = 53
pass in on eth0 proto udp from <dns_ip> port = 53 to
<local_ip> port > 1023
2) Example rules in rules.txt shipped within PktFilter-
0.06-beta2.zip contains errors, in particular rule 'pass
out on eth0 proto icmp from 192.168.1.1 type echo-rep
to any' which should look like ''pass out on eth0 proto
icmp from 192.168.1.1 to any icmp-type echorep'.
And after all - this is an excellent tool, I'v been waiting it
for long time! Thanks. Hope to see release :)
Logged In: YES
user_id=674313
Thank you for the bug report!
1) Logging is known to be not 100% reliable...
2) I''ve fixed rules.txt and uploaded a new archive.