Internet connection sharing and gateways

andrewjjones · 10-06-2004, 04:44 PM

Still no luck

Everthing went okay, except I can't see iptable_nat in the module list. When I try to insert it it says it can't find the file. Iptables is installed okay though and is in the list.

mritch · 10-06-2004, 05:28 PM

you need iptables compiled in or as a module for your kernel. if it's not, here is your problem. check your dmesg about something like this:

ip_tables: (C) 2000-2002 Netfilter core team

what kernel version are you using?

sl mritch.

andrewjjones · 10-10-2004, 10:55 AM

I tried using insmod and modprobe to start iptable_nat, but I still can't get it to work properly. BTW, I'm using Mandrake 10 kernel 2.6.3.7.

I tried going into /lib/modules/2.6.3-7mdkcustom/kernel/net/ipv4/netfilter and tried using insmod but I got the following error:

insmod: error inserting 'iptable_nat.ko' : -1 Unnknown symbol in module.

going into /lib/modules/2.6.3.7mdk/kernel/net/ipv4/netfilter and using insmod gives me this error:

insmod: error inserting 'iptable_nat.ko.gz' : -1 Invalid module format

Instead I tried using modprobe to insert the module. Together with iptables, this is what I typed into the command line:

Code:

iptables -A INPUT -m state --state INVALID -j DROP
iptables -A FORWARD -m state --state INVALID -j DROP
iptables -A OUTPUT -m state --state INVALID -j DROP

iptables -A FORWARD -i wlan0 -o ppp0
iptables -A FORWARD -i ppp0 -o wlan0

iptables -P INPUT DROP
iptables -P FORWARD DROP

iptables -A INPUT -i ppp0 -j ACCEPT
iptables -A INPUT -i wlan0 -m state --state ESTABLISHED,RELATED -j ACCEPT

iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
 
modprobe iptable_nat

It seems to work (in the sense I get no error messages) but once this is run it kills everything to do with networking and the internet. After running this I can't ping the computer itself; the internet stops working - even SWAT (used for Samba) won't work. Other things are affected too - kwrite won't even start after I try this. This still happens even if I make the "modprobe iptable_nat" command the first command too.

mritch · 10-10-2004, 11:36 AM

the errors 'bout the netfilter modules are not good. as this is a handrolled kernel i suggest you to not build the netfilter as modules. this way you can be sure the iptables thing will work properly. if you don't know what features you need here are the important:
connection tracking (ftp,irc)
ip tables
limit*
mac*
packet type*
multiport*
tcpmss**
helper
connection state
connection tracking**
packet filtering (reject,mirror*)
full nat (masqerade, redirect*)
mangeling*(TOS)
log
TCPMMS**
arp**(filtering)

*if unsure yes
**optional (you can do some fancier things with those)

now about the firewall:

order does matter - this is a example for your situation:

echo 1 (switch on) to:
/proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
/proc/sys/net/ipv4/tcp_syncookies
../ipv4/tcp_forward
../ipv4/icmp_ignore_bogus....
../ipv4/conf/<everywhere>/rp_filter & log_martians

echo 0 (switch off) to:
../ipv4/conf/<every>/accept_redirects
../ipv4/conf/<every>/send_redirects < optional
../ipv4/conf/<every>/accept_source_route

iptable rules:
i assume your internal net (wlan+box) is in 192.168.1.0
(don't forget to flush all existing rules before)

iptables -P INPUT DROP
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP
iptables -t nat -P PREROUTING ACCEPT
iptables -t nat -P POSTROUTING ACCEPT

iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
iptables -A INPUT -i lo -s 127.0.0.1 -j ACCEPT
iptables -A INPUT -m state --state INVALID -j DROP
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i wlan0 -s 192.168.1.0/24 -j ACCEPT
iptables -A INPUT -i ppp0 -m state --state NEW -j DROP
iptables -A FORWARD -m state --state INVALID -j DROP
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i wlan0 -s 192.168.1.0/24 -j ACCEPT
iptables -A FORWARD -i ppp0 -m state --state NEW -j DROP

think that should work..read documenation at www.netfilter.org and www.tldp.org for details.

sl mritch.

andrewjjones · 10-11-2004, 03:11 PM

I tried recompiling my kernel and installing it (though how can you check
if its running). But to try to see if it worked once linux had loaded I
looked in my /var/log/messages file - and it still dosen't seem to be working. I used this;

$ cat /var/log/messages | grep iptable_nat

Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_ct_selective_cleanup
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ipt_do_table
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol invert_tuplepr
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_ct_gather_frags
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ipt_unregister_table
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_get
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_htable_size
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ipt_unregister_target
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_destroyed
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol __ip_ct_find_proto
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol need_ip_conntrack
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_tuple_taken
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ipt_register_target
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_alter_reply
Oct 10 14:31:25 desktop2 kernel: iptable_nat: Unknown symbol ipt_register_table
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_ct_selective_cleanup
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol invert_tuplepr
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_ct_gather_frags
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_get
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_htable_size
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_destroyed
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol __ip_ct_find_proto
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol need_ip_conntrack
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_tuple_taken
Oct 10 14:31:39 desktop2 kernel: iptable_nat: Unknown symbol ip_conntrack_alter_reply

To make this kernel I did the following;

make mrproper ( I did this just once for the patch needed for my adsl modem, not this
time around compiling is it needed?)

make menuconfig
(then set the options)
make
make bzImage modules modules_install

then copied the made kernel from /arch/i386/boot/bzImage to /boot/bzImage2
then typed mkinitrd -f -v /boot/bzImage2 2.6.3-7mdkcustom

then modified lilo.conf and ran lilo;
this is the entry I used:

image=/boot/bzImage2
label="linux3"
root=/dev/sda1
initrd=/boot/vmlinux
append="devfs=mount acpi=ht resume=/dev/sda5"
read-only

(is this the right way to make the kernel?)

Maybe this would work better on another distro? I have a copy of Slackware 10, maybe all of this would work better with that since it uses a 2.4 and not a 2.6 kernel though I don't know how to set some of the settings that is done with mandrake's graphical tool in slackware, eg setting the wlan's ip address, netmask, operating mode and netork name
at the command line and without a gui).

mritch · 10-11-2004, 05:47 PM

can't tell if there is a easier method building a kernel in mandrake. you did it the original way - should work ;-) .., but before compiling the kernel to a "make clean" to be sure. btw. if i don't change hardware i don't build modularized kernel for security and performance reasons. if your machine is a newer one (above 300MHz/128MB) and you can build without modules (nvidia, your dsl,...) i'd suggest to do so. however, if you're using lot of features the kernel likely will get quite large. but as modern pc's have quite a lot ram you can mostly ignore this.

it might be that your software isn't recent enough for the 2.6 kernel. this will also explain your modules-troubles. have a look into <kerbel_source>/Documentation/Changes.txt to check if your versions are ok.

!if you're not sure use 2.4(.26)! it's an very stable kernel - i still prefer it over a 2.6 in my production systems. for geeking 'round with very new hardware or newer feature for your desktop go with 2.6. lot of benchmarks don't show mucho differences, imho 2.4 is still faster in io related things.

sl mritch.

mritch · 10-11-2004, 06:01 PM

have you removed /lib/module/<kernel-vers> before installing the new ones?

andrewjjones · 10-14-2004, 03:10 PM

Hi,

Ok, after the trouble with mandrake 10, I decided to wipe the hard
drive and completely start all over again - this time with slackware 10 (and
also because it uses a 2.4 rather than a 2.6 kernel).

I installed slackware and downloaded the drivers for the radio network card
(neither the kernel nor slackware had the needed drivers). Compilation and
installation seems to be ok (in the sense that the driver sees the radio
network (wlan0, usb) ok and gives it a MAC address and labels it wlan0).

Also I recompiled and installed my ADSL modem drivers which seemed to work
ok (though only I changed the usb driver with these commands);

modprobe -r uhci
modprobe usb-uhci

I tried using insmod to load up the "iptable_nat" module, but still got
trouble

. I still got lots of messages about 'unresolved symbols'.
However after a lot of poking about on the internet I read that iptable_nat as
a module needs two other things: ip_conntrack and ip_tables. So I tried
these commands;

insmod ip_tables.o.gz
insmod ip_conntrack.o.gz
insmod iptable_nat.o.gz

This time I got no errors about unresolved symbols (though I can't tell if
it really is working, I can only guess it is from the fact that I don't get
any errors).

After that I was able to configure the radio network card by doing this;

iwconfig wlan0 mode ad-hoc channel 10 essid okwlan
ifconfig wlan0 192.168.0.10
ifconfig wlan0 up

I then started my modem drivers; both the modem and wlan driver stay up

.

Typing ping 192.168.0.10 also seems to work.

However just leaving the iptables setting up to one side for a moment is
this the right way to do stuff? I still couldn't ping the windows machine on
192.168.0.1, so maybe there's some more stuff to do? It's almost as if the
card is working and enabled but almost as if its not fully on.

Thanks.

mritch · 10-14-2004, 03:39 PM

maybe you've installed service pack 2 on your ms? it seems that it blockes ping request by default. do a "nmap -P0 -O <windows-ip>" to know it's there.

these insmods for iptables are confusing to me too. first, modprobe *should* pull in other needed modules automaticaly, and second, i've never seen the .o.gz ending. anyway, since i don't use modularized kernels i can' tell about that.
do a "iptables -L -v" to see your current rules - and if they show up assume they are allright. you can check if they work by using a a rule, say
iptables -A INPUT -i <interface> -t tcp --dport 81 -j LOG
iptables -A INPUT -i <interface> -t udp --dport 81 -j LOG
and do a "netcat <ip-interface> 81". there should be a message about that packet either on your console or in the systemlogfile messages. the iptables module for logging traffic has to be insmod'd for this to work.

-----
However just leaving the iptables setting up to one side for a moment is this the right way to do stuff?
-----
what do you mean?

sl mritch.

andrewjjones · 10-15-2004, 12:15 PM

Hi,

Ok I *think* I'm getting just a little further with things. I've managed to work
out the correct sequence of programs that I need to run in order to get things
to run properly.

BTW I have "swat" and "samba" installed do these affect iptables in any way?

Here's the sequence of events; They are as follows;

1. Stop the apache web server with "apachectl stop". (This seems to be installed
by default by slackware 10).

2. Change the linux USB driver (modprobe -r uhci, then usb-uhci).

3. Start up ip-tables, ip conntrack and iptable nat with modprobe.

(BTW the modules are all, in slackware 10, in /lib/modules/2.4.26/kernel/net/
ipv4/netfilter, they all end in .o.gz).

4. Setup the wireless (radio) network card with iwconfig and ipconfig.

5. Connect to the internet.

--

6. Connect to the linux box with the windows box (the network cards, not the
actual network. This is done with some software that comes with the radio
network card for windows 2000).

7. Ping the linux box on the windows box, eg ping 192.168.0.10 (and in the
same vein after I run the script below, on the linux box ping 192.168.0.1).

--
Linux box: IP = 192.168.0.10
Win2K box: IP = 192.168.0.1
Distro : Slackware 10
Kernel : 2.4.26
--

I've made this script which does it all for me (apart from the pinging);

<----

#!/bin/sh

clear

echo "Stopping apache"
apachectl stop

echo "Changing USB drivers"
modprobe -r uhci
modprobe usb-uhci

echo "IP Tables"
modprobe ip_tables
modprobe ip_conntrack
modprobe iptable_nat

echo "Configuring wlan0"
iwconfig wlan0 mode ad-hoc channel 10 essid okwlan
ifconfig wlan0 192.168.0.10
ifconfig wlan0 up

echo "Startmodem"
startmodem

---->

BTW if I just tried to insmod iptable_nat by itself in the /lib/modules...
directory, I got lots of messages about "unresolved symbols" just like I got
under mandrake 10.

I've also decided to use a different windows 2000 box I started with a
completely fresh install of windows 2000. The only thing it has installed is
a default windows 2000 install and the software for its wireless network card.

I've been trying some of the earlier rules for ip_tables on this page and it "almost" works. Almost in
the sense that the windows 2000 box, once connected (and it can ping 192.168.0.10, the linux box IP (the
windows box is 192.168.0.1)); I can see it trying to do something and it's trying to connect to 192.168.0.10
but fails each time, it tries 4 times and gives up. I'm still thinking maybe there's a problem with the
iptables rules somewhere?

Here's an output of my iptables:

Code:

Chain INPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  lo     any     localhost            anywhere            
    0     0 DROP       all  --  any    any     anywhere             anywhere            state INVALID 
  108 22071 ACCEPT     all  --  any    any     anywhere             anywhere            state RELATED,ESTABLISHED 
   78  4363 ACCEPT     all  --  wlan0  any     localnet/24          anywhere            
   52  2536 DROP       all  --  ppp0   any     anywhere             anywhere            state NEW 

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DROP       all  --  any    any     anywhere             anywhere            state INVALID 
    0     0 ACCEPT     all  --  any    any     anywhere             anywhere            state RELATED,ESTABLISHED 
    0     0 ACCEPT     all  --  wlan0  any     localnet/24          anywhere            
    0     0 DROP       all  --  ppp0   any     anywhere             anywhere            state NEW 

Chain OUTPUT (policy ACCEPT 271 packets, 21446 bytes)
 pkts bytes target     prot opt in     out     source               destination

BTW what I meant earlier when I asked if I was doing things right I was meaning am I going about
this the correct way or not? Or am I trying to do everything in reverse and the "hard way"?

mritch · 10-15-2004, 02:09 PM

Quote:

Originally posted by andrewjjones

BTW I have "swat" and "samba" installed do these affect iptables in any way?

can't think of. (no)

1.
you could also use startup files in /etc/rc.* or /etc/init.d to disable it.

2.
wrong modules get loaded? have a look in /etc/modules (startup mod-loading
in debian)
/etc/modutils (read the documentation from you distribution about modules to
know how to load the right ones at bootup)
maybe there is some kind of hardware autodetect wich causes this.

3.
only modprobe is aware of pulling in other necessary modules if needed - insmod
can't do so.
modprobe .. please, please try to insert this module.
insmod .. insert this module!

.o.gz (have not used modules for a long time now %)

Quote:

I can see it trying to do something and it's trying to connect to 192.168.0.10
but fails each time, it tries 4 times and gives up. I'm still thinking maybe there's
a problem with the iptables rules somewhere?

you don't need te firewall rules (except the a masquarading rule) to test connectivity.
your rules are ok.

here is an idea for better logging: you need iptables modules belong to it be loaded.
the limit take care your harddisk will not be filled up. /var/log/messages to see.
we add TWO new chain - it's only for logging and we link there what we want to see.
one for those packets get DROPPED and the other for ACCEPTED ones. the rest ist just copied over from one of my old posts.

# iptables -N log_n_drop
# iptables -N log_n_pass
# iptables -P INPUT DROP
# iptables -P OUTPUT ACCEPT
# iptables -P FORWARD DROP
# iptables -t nat -P PREROUTING ACCEPT
# iptables -t nat -P POSTROUTING ACCEPT

# iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE

# iptables -A log_n_pass -m limit --limit 6/m --limit-burst 2 -j LOG --log-level info --log-prefix "ACCEPTED:"
# iptables -A log_n_pass -j ACCEPT
# iptables -A log_n_drop -m limit --limit 12/m --limit-burst 2 -j LOG --log-level info --log-prefix "DROPPED:"
# iptables -A log_n_drop -j DROP

# iptables -A -i lo -s 127.0.0.1 -j ACCEPT
# iptables -A INPUT -m state --state INVALID -j DROP
# iptables -A INPUT -i ppp0 -m state --state NEW -j log_n_drop
# iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# iptables -A INPUT -i wlan0 -s 192.168.1.0/24 -j log_n_pass

# iptables -A FORWARD -m state --state INVALID -j DROP
# iptables -A FORWARD -i ppp0 -m state --state NEW -j log_n_drop
# iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
# iptables -A FORWARD -i wlan0 -s 192.168.1.0/24 -j log_n_pass

Quote:

BTW what I meant earlier whenI asked if I was doing things right I was meaning
am I going about this the correct way or not? Or am I trying to do everything in
reverse and the "hard way"?

you're definitely donin' the hard way ;-) in a few weeks/months, when you know your linux
box bit better you'll sure wonder how things could got so terrible wrong.

the easy way:
take time, read the basic linux howtos at www.tldp.org.
read the documentation shipped with your os.
buy a recent book about the linux os.

anyway, i did the "diving in head 1st" back in '98, but luckely with a 800 pages book about linux.
but things are even better documentated now ;-)

sl mritch.

andrewjjones · 10-16-2004, 02:46 PM

Heh, I'll have to get reading then

I tried the iptables commands and the logging. I got the following log from
/var/log/messages (sorry, it's massive):

Code:

Oct 16 19:10:05 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.131.49 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=43588 DF PROTO=TCP SPT=4768 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:10:08 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.131.49 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=43931 DF PROTO=TCP SPT=4768 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:10:14 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.131.49 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=44641 DF PROTO=TCP SPT=4768 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:10:20 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.226.36 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=19450 DF PROTO=TCP SPT=4497 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:10:23 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.226.36 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=20458 DF PROTO=TCP SPT=4497 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:10:29 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.127.62 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=45541 DF PROTO=TCP SPT=3983 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:10:32 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.127.62 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=45671 DF PROTO=TCP SPT=3983 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:11:23 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.3.197 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=25534 DF PROTO=TCP SPT=3311 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:11:26 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.3.197 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=25890 DF PROTO=TCP SPT=3311 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:04 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.72.212 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=37544 DF PROTO=TCP SPT=3628 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:15:06 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.72.212 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=37832 DF PROTO=TCP SPT=3628 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:15:15 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.197.209 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=524 DF PROTO=TCP SPT=3530 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:18 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=200.78.88.64 DST=217.43.144.182 LEN=78 TOS=0x00 PREC=0x00 TTL=110 ID=52181 PROTO=UDP SPT=1031 DPT=137 LEN=58 
Oct 16 19:15:27 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.157.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=6592 DF PROTO=TCP SPT=3292 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:15:30 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.157.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=6994 DF PROTO=TCP SPT=3292 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:15:34 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.255.249 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=59029 DF PROTO=TCP SPT=3044 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:37 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.255.249 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=59497 DF PROTO=TCP SPT=3044 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:50 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.199.218 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=11441 DF PROTO=TCP SPT=3731 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:50 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.79.139 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=3274 DF PROTO=TCP SPT=4103 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:15:55 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.186.47 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=120 ID=4626 DF PROTO=TCP SPT=3322 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:16:00 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=165.165.250.180 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=14175 DF PROTO=TCP SPT=3716 DPT=445 WINDOW=64800 RES=0x00 SYN URGP=0 
Oct 16 19:16:16 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.180.52 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=40706 DF PROTO=TCP SPT=4860 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:16:19 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=222.88.173.5 DST=217.43.144.182 LEN=1165 TOS=0x00 PREC=0x00 TTL=105 ID=10541 PROTO=UDP SPT=19563 DPT=1026 LEN=1145 
Oct 16 19:16:23 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=81.244.14.7 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=45161 DF PROTO=TCP SPT=1456 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:16:28 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=63.201.26.160 DST=217.43.144.182 LEN=52 TOS=0x00 PREC=0x00 TTL=104 ID=60686 DF PROTO=TCP SPT=1495 DPT=6881 WINDOW=64240 RES=0x00 SYN URGP=0 
Oct 16 19:16:32 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=81.244.14.7 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=46035 DF PROTO=TCP SPT=1456 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:16:37 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=63.201.26.160 DST=217.43.144.182 LEN=52 TOS=0x00 PREC=0x00 TTL=104 ID=61266 DF PROTO=TCP SPT=1495 DPT=6881 WINDOW=64240 RES=0x00 SYN URGP=0 
Oct 16 19:16:49 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.224.253 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=45856 DF PROTO=TCP SPT=3853 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:16:52 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.224.253 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=46246 DF PROTO=TCP SPT=3853 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:17:01 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.138.217 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=14495 DF PROTO=TCP SPT=3865 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:17:01 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=159.134.58.166 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=6741 DF PROTO=TCP SPT=2665 DPT=445 WINDOW=8760 RES=0x00 SYN URGP=0 
Oct 16 19:17:10 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=159.134.58.166 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=7102 DF PROTO=TCP SPT=2665 DPT=445 WINDOW=8760 RES=0x00 SYN URGP=0 
Oct 16 19:17:11 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.138.217 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=16422 DF PROTO=TCP SPT=3865 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:17:21 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=24.200.203.192 DST=217.43.144.182 LEN=63 TOS=0x00 PREC=0x00 TTL=108 ID=27740 PROTO=UDP SPT=1381 DPT=3965 LEN=43 
Oct 16 19:17:24 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=24.200.203.192 DST=217.43.144.182 LEN=63 TOS=0x00 PREC=0x00 TTL=108 ID=28535 PROTO=UDP SPT=1381 DPT=3965 LEN=43 
Oct 16 19:17:27 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=24.200.203.192 DST=217.43.144.182 LEN=63 TOS=0x00 PREC=0x00 TTL=108 ID=29198 PROTO=UDP SPT=1381 DPT=3965 LEN=43 
Oct 16 19:17:32 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.108.131 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=29632 DF PROTO=TCP SPT=4850 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:17:41 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=81.57.132.77 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=27426 DF PROTO=TCP SPT=4321 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:17:44 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=81.57.132.77 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=28237 DF PROTO=TCP SPT=4321 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:17:54 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=66.32.67.224 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=24604 DF PROTO=TCP SPT=3625 DPT=445 WINDOW=64240 RES=0x00 SYN URGP=0 
Oct 16 19:17:57 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.136.169 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=21812 DF PROTO=TCP SPT=4806 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:18:00 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.136.169 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=21901 DF PROTO=TCP SPT=4806 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:18:12 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=4.14.231.86 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=34395 DF PROTO=TCP SPT=4161 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:18:28 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.136.169 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=23075 DF PROTO=TCP SPT=3298 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:18:32 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.136.169 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=23198 DF PROTO=TCP SPT=3298 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:18:43 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.79.167 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=19826 DF PROTO=TCP SPT=4647 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:18:57 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=60 TOS=0x00 PREC=0x00 TTL=128 ID=108 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=2048 
Oct 16 19:18:58 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=60 TOS=0x00 PREC=0x00 TTL=128 ID=109 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=2304 
Oct 16 19:19:09 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.199.218 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=20049 DF PROTO=TCP SPT=3082 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:19:09 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=111 DF PROTO=TCP SPT=1036 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:19:12 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.199.218 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=20147 DF PROTO=TCP SPT=3082 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:19:18 home kernel: ACCEPTED:IN=wlan0 OUT= MAC= SRC=192.168.0.10 DST=192.168.0.255 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=137 DPT=137 LEN=58 
Oct 16 19:19:31 home kernel: ACCEPTED:IN=wlan0 OUT= MAC= SRC=192.168.0.10 DST=192.168.0.255 LEN=215 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=138 DPT=138 LEN=195 
Oct 16 19:19:37 home kernel: ACCEPTED:IN=wlan0 OUT= MAC= SRC=192.168.0.10 DST=192.168.0.255 LEN=215 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=138 DPT=138 LEN=195 
Oct 16 19:19:38 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=139 DF PROTO=TCP SPT=1043 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:19:47 home kernel: ACCEPTED:IN=wlan0 OUT= MAC= SRC=192.168.0.10 DST=192.168.0.255 LEN=96 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=137 DPT=137 LEN=76 
Oct 16 19:19:47 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.171.78 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=360 DF PROTO=TCP SPT=3834 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:19:49 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.214.100 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=14053 DF PROTO=TCP SPT=4249 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:19:52 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.214.100 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=15157 DF PROTO=TCP SPT=4249 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:03 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.20.247 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=30843 DF PROTO=TCP SPT=2342 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:05 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.169.166 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=12771 DF PROTO=TCP SPT=3457 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:20:06 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=167 DF PROTO=TCP SPT=1050 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:07 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=170 DF PROTO=TCP SPT=1050 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:12 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.181.107 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=49922 DF PROTO=TCP SPT=1827 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:20:14 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.181.107 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=51223 DF PROTO=TCP SPT=1827 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:20:29 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=195 DF PROTO=TCP SPT=1057 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:30 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=197 DF PROTO=TCP SPT=1057 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:30 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.139.33 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=31716 DF PROTO=TCP SPT=2999 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:20:33 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.139.33 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=32549 DF PROTO=TCP SPT=2999 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:20:36 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.120.112 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=11634 DF PROTO=TCP SPT=3842 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:39 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=60 TOS=0x00 PREC=0x00 TTL=128 ID=223 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=2816 
Oct 16 19:20:46 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.109.157 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=48526 DF PROTO=TCP SPT=3419 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:20:49 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.109.157 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=48641 DF PROTO=TCP SPT=3419 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:11 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.114.46 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=54278 DF PROTO=TCP SPT=1721 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:13 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.112.240 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=21676 DF PROTO=TCP SPT=2681 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:22 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=229 DF PROTO=TCP SPT=1064 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:22 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=231 DF PROTO=TCP SPT=1064 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:23 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.112.240 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=23716 DF PROTO=TCP SPT=2681 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:36 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=257 DF PROTO=TCP SPT=1071 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:38 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=63.201.26.160 DST=217.43.144.182 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=29457 DF PROTO=TCP SPT=1495 DPT=6881 WINDOW=0 RES=0x00 ACK RST URGP=0 
Oct 16 19:21:42 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=279 DF PROTO=TCP SPT=1076 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:21:57 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=213.65.49.141 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=34048 DF PROTO=TCP SPT=1037 DPT=445 WINDOW=64240 RES=0x00 SYN URGP=62470 
Oct 16 19:21:59 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.182.111 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24111 DF PROTO=TCP SPT=3220 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:22:02 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.182.111 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24504 DF PROTO=TCP SPT=3220 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:22:07 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.87.88 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=21612 DF PROTO=TCP SPT=1436 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:22:07 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=285 DF PROTO=TCP SPT=1078 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:22:08 home kernel: ACCEPTED:IN=wlan0 OUT= MAC=00:0d:2f:00:89:71:00:02:dd:31:16:fe:08:00 SRC=192.168.0.1 DST=192.168.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=287 DF PROTO=TCP SPT=1078 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:22:42 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.144.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=48422 DF PROTO=TCP SPT=3977 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:22:43 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.243.242 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=32987 DF PROTO=TCP SPT=1870 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:22:52 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.171.78 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=64417 DF PROTO=TCP SPT=3087 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:22:55 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.171.78 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=65348 DF PROTO=TCP SPT=3087 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:23:50 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.155.190 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=62395 DF PROTO=TCP SPT=4371 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:23:53 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.155.190 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=62778 DF PROTO=TCP SPT=4371 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:24:06 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.155.190 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=64505 DF PROTO=TCP SPT=1477 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:24:09 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.155.190 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=64875 DF PROTO=TCP SPT=1477 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:24:15 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.20.187 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=30845 DF PROTO=TCP SPT=2384 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:24:18 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.20.187 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=30927 DF PROTO=TCP SPT=2384 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:24:35 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.150.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=125 ID=16544 DF PROTO=TCP SPT=3688 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:24:39 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.171.78 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=33984 DF PROTO=TCP SPT=3807 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:24:41 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.171.78 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=34959 DF PROTO=TCP SPT=3807 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:24:52 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.0.154 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=40613 DF PROTO=TCP SPT=1749 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:24:55 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.0.154 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=41438 DF PROTO=TCP SPT=1749 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:25:23 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.3.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=55792 DF PROTO=TCP SPT=3506 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:25:26 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.3.102 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=56861 DF PROTO=TCP SPT=3506 DPT=135 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:25:43 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.157.225.114 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=30646 DF PROTO=TCP SPT=3444 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:25:52 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=64.140.184.70 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=64725 DF PROTO=TCP SPT=2523 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:25:53 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.57.165 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=33839 DF PROTO=TCP SPT=1586 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 
Oct 16 19:25:57 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.214.100 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=121 ID=22378 DF PROTO=TCP SPT=2843 DPT=445 WINDOW=16384 RES=0x00 SYN URGP=0 
Oct 16 19:26:42 home kernel: DROPPED:IN=ppp0 OUT= MAC= SRC=217.43.182.111 DST=217.43.144.182 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=56882 DF PROTO=TCP SPT=3841 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0

BTW In the line that says

"iptables -A -INPUT -i wlan0 -s 192.168.1.0/24 -j log_n_pass"

and

"iptables -A FORWARD -i wlan0 -s 192.168.1.0/24 -j log_n_pass"

What is the "192.168.1.0/24" part? Do I have to make the windows box (which
is on 192.168.0.1) connect to this? Also what's the "/24" part?

Also in the /var/log/messages above, the data dosent seem to be going "OUT"
anywere; in is ppp0, but out is "", IN=pp0, OUT=

I'm vary grateful for all of your help!

mritch · 10-16-2004, 03:04 PM

read ;-)

..the network (NET 3 or 4) **howto. it may be allready on your system or get it at the link i posted.

ip addresses are hexadecimal ...
http://www.linuxquestions.org/questi...hreadid=241702
.. i don't ike to repeat myself too often...

for short:
192.168.1.0/24 would be (nearly) every address in the 192.168.1 net aka .1-.254 but not 0 and (*not 100% sure myself)not 255.
192.168.0.0/16 would be, guess .. 192.168. from 1.1 - 254(*5).254(*5)
you can also define subnets** easily with this.

to answer you question:
nope. you'll have to use a rule like 192.168.0.0/24 here. it just covers the the last part (after the last . ) of that address-range. or see /16 above.

you can also write
/24 = 192.168.1.0/255.255.255.0
or /16 = 192.168.0.0/255.255.0.0
here.
everything clear? sorry 'bout the cross references and unclear terms ..just came back from a few beers...

sl mritch.

andrewjjones · 10-16-2004, 03:55 PM

It works! Thankyou so much for your help! After changing it to 192.168.0.0, all ports seem to be being 'shared' now which is just what I wanted it to do.

We got there in the end

andrewjjones · 10-29-2004, 02:02 PM

Like I said, thank you very much for all of your help. The computer is now in my loft sharing the internet for my other computers on the wireless network.

Here's a photo of it in my very untidy loft

http://img49.exs.cx/img49/5338/linux_server_01.jpg