LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 09-13-2004, 02:28 AM   #1
chibi
Member
 
Registered: Aug 2004
Location: Canada
Distribution: Archlabs
Posts: 65

Rep: Reputation: 15
weird network jibberish in /var/log/messages - how to remove?


Hello,

This might be a general question, but it is being caused by something network related, so chances are someone more involved with networking would recognize it.

I've noticed alot of network jibberish being logged to the location in the title, and I've been trying to remove it. I thought it was maybe due to samhain that I was experimenting with, but I have disabled it at startup, and new jibberish is still appearing. This is what it looks like:

root@box:/home/chibi# tail -l /var/log/messages
Sep 13 02:54:57 box kernel: Rejected packet: IN=eth0 OUT= MAC=00:04:76:cb:e7:41:00:08:0d:b7:0c:d1:00:00 SRC=192.168.0.2 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=10435 DF PROTO=TCP SPT=3351 DPT=2869 WINDOW=64240 RES=0x00 ACK FIN URGP=0
Sep 13 02:54:57 box kernel: Rejected packet: IN=eth1 OUT= MAC=00:0f:9f:8e:13:1d:00:05:00:e1:b0:6a:00:00 SRC=201.1.83.180 DST=69.193.00.00 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=27888 DF PROTO=TCP SPT=4603 DPT=1214 WINDOW=64800 RES=0x00 SYN URGP=0
Sep 13 02:54:58 box kernel: Rejected packet: IN=eth1 OUT= MAC=00:0f:9f:8e:13:1d:00:05:00:e1:b0:6a:00:00 SRC=201.8.110.192 DST=69.193.00.00 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=31996 DF PROTO=TCP SPT=60303 DPT=1214 WINDOW=16384 RES=0x00 SYN URGP=0
Sep 13 02:55:00 box kernel: Rejected packet: IN=eth1 OUT= MAC=00:0f:9f:8e:13:1d:00:05:00:e1:b0:6a:00:00 SRC=201.1.83.180 DST=69.193.00.00 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=27927 DF PROTO=TCP SPT=4603 DPT=1214 WINDOW=64800 RES=0x00 SYN URGP=0
Sep 13 02:55:02 box kernel: Rejected packet: IN=eth1 OUT= MAC=00:0f:9f:8e:13:1d:00:05:00:e1:b0:6a:00:00 SRC=68.228.38.127 DST=69.193.00.00 LEN=48 TOS=0x00 PREC=0x00 TTL=107 ID=51146 DF PROTO=TCP SPT=1214 DPT=1214 WINDOW=65535 RES=0x00 SYN URGP=0

It just goes on like that. Please note that the '69.193.00.00' is my ip address, but ive replaced the ends with 00s. So the DSTination is my computer, but the SRCe is some unknown place for some of them. the 192.168.0.1 and .2 are for my home network between my desktop and laptop. If I open my browser and visit google it doesnt seem to create a new entry. If I wait 5 minutes and look again, then it will change. I also notice when I first boot linux, all the dmesg stuff appears and then near the end just before gdm loads, this jargon will display all over. And if I hit into tty1 before logging in with gdm, and then go back to tty7. gdm is gone and filled with this jargon and i have to reboot to get gdm back (probly just cause im not smart enough to restart gdm)

So I would very much like this to go away. It is troublesome, and it really clutters my /var/log/messages file. It covers up all the useful things I could be viewing.

my modem is a motorola surfboard SB5100 cable modem, currently connected to my desktop (which has the problem) via USB. I would use eithernet, but linux wont let my wireless card on my laptop work, so the laptop is being networked with ethernet..i dont really want to change this configuration please and im not about to buy a second enet card yet.

if there is even just a way to tell it to log to a different location that would be nice too.

I really appreciate your help, and I am sorry I wrote a bit much.. I just like to give all the details.

-Chibi

Last edited by chibi; 09-13-2004 at 02:33 AM.
 
Old 09-13-2004, 03:45 AM   #2
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,157
Blog Entries: 1

Rep: Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021
These are logs from your iptables. If you want to get rid of them, stop iptables (which is not recommended as it's like a firewall), or change your /etc/syslog.conf to not log these entries.
For details: man syslog.conf
 
Old 09-13-2004, 12:02 PM   #3
chibi
Member
 
Registered: Aug 2004
Location: Canada
Distribution: Archlabs
Posts: 65

Original Poster
Rep: Reputation: 15
thanks. i will take a look.

-Chibi
 
Old 09-22-2004, 10:17 AM   #4
Fredi
LQ Newbie
 
Registered: Sep 2004
Location: Poland
Distribution: Debian
Posts: 2

Rep: Reputation: 0
How to configure Motorola SB5100

Hallo!

I have Motorola SURFboard Cable Modem SB5100 for 3 days. I Tryied configure it on Debian (newest unstable) and kernel 2.6.8.1. I have another computer connected with server with Cable Modem by ethernet card - so i need to have free Ethernet Card (as a last resort i by new card...).

What I have done:
- I can make new interface (only eth0) with property HW ADDRESS,
- I prefer USB connection, and found (on google) many people get it work by USB, so "modprobe usbnet" work fine

What I haven't done:
- DHCP faill:
Quote:
/etc/dhcpc/dhcpcd.exe: line 49: .: filename argument required
.: usage: . filename [arguments]
dhcpcd.exe: wrong interface name ""
- other interfaces than eth0 don't work (can't find device by HWADDRESS):
Quote:
ifconfig eth0 hw ether xx:xx:xx:xx:xx up
- fail


I tryied configure Modem by Ethernet cable - but i have problems too.
Under win2k Modem via USB work fine, and I can see all of great configuration (for ex. in cmd line: ipconfig).

If you Chibi or anyone can write correct configuration (the best for Debian) of DHCP, network interfaces and all need scripts.

THANKS VERY MUCH
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
/var/log/messages weird entries blizunt7 Linux - Security 5 11-01-2005 05:56 PM
Redirecting the kernel messages to file other than /var/log/messages jyotika_b83 Linux - General 3 04-28-2005 06:39 PM
From where am i getting error messages to /var/log/messages? prabhuacsp Programming 3 02-16-2005 08:59 AM
From where am i getting error messages to /var/log/messages? prabhuacsp Linux - Networking 1 02-16-2005 12:34 AM
/var/log/messages full of these messages. Should I be concerned? mdavis Linux - Security 5 04-16-2004 10:08 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:28 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration