[Firewall] How to get rid of netbios session queries

Arno van Amersfoort arnova at rocky.eld.leidenuniv.nl
Thu Oct 26 12:59:14 MDT 2006


You could try INT_NET_BCAST_ADDRESS="192.168.1.255" with 
BROADCAST_UDP_NOLOG="138"

I hope it helps.

a.

phenoboy at surfeu.fi wrote:
> Hi,
> 
> First of all this firewall script is the best I've seen. It has many
> options and I got it working in less than 15minutes.
> 
> I have ADSL and NAT to many hosts on internal net. My ip_conntrack seems
> to get filled with these:
> 
> udp      17 13 src=192.168.1.123 dst=192.168.1.255 sport=138 dport=138
> packets=3 bytes=606 [UNREPLIED] src=192.168.1.255 dst=192.168.1.123
> sport=138 dport=138 packets=0 bytes=0 mark=0 use=1
> 
> is there a way to keep ip_conntrack "clean" of these by preventing hosts
> to broadcast these udp messages ?
> 
> 
> 
> 
> 
> _______________________________________________
> Firewall mailing list
> Firewall at lists.btito.net
> http://lists.btito.net/mailman/listinfo/firewall_lists.btito.net
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl

-- 
Arno van Amersfoort
E-mail    : arnova at rocky.eld.leidenuniv.nl
Donations are welcome through Paypal!
---------------------------------------------------------------------------
Arno's (Linux IPTABLES Firewall) Homepage:
http://rocky.eld.leidenuniv.nl



More information about the Firewall mailing list