My logs are being flooded from pings from my router(i think)!!!
Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
My logs are being flooded from pings from my router(i think)!!!
hey,
I am running Debian Sid.My netowrk setup is not complicated at all...i am behind a router whose address is 192.168.0.1 and my address is 192.168.0.2
Now i keep getting logs of pings/probes sent by my router to my machine.the look like this:
I dont exactly know what this is but i am guessing these are pings from the router to my machine.
MY log files in /var/log are flooded with these messages including dmesg and messages.
Also when i go into console mode after turning off X i keep getting these messages almost every minute and like 5 at a time.Even if i am editing a file in vi i get this message and it becmes very irritating since i have to clse that file and open it again after these have stopped.
I have been having this problem since the last month or so.
Oh and if it matters i run kernel 2.4.24
i would really appreciate it if someone could point me in the right direction to stopping these messages from being logged/displayed.
thanks
UDP port 137 (and TCP 137 for that matter) is used by the NetBIOS Name Service.
Does your router have any kind of firewall, or is it forwarding any/all traffic to your machine? It sounds to me like you are getting lots of Windows orientated traffic from the web. Although they look like they are from your router this may not be the case - will your router NAT incomming (read new connections) traffic? If it will then these could infact be from any external IP address.
Are there any NetBIOS related settings on your router? What model is it?
i have a netgear router.I have opened up ports 22 and 80 and forwarded them to my machine since i access my computer from school and work.My roomate is running win XP and i think he does have netbios running.I also think that my router does try to determine my machine name since when i go onto my router page and click on attached devices...it shows my roomates machine name and mine s unknown...so maybe it is trying to determine the name of my machine?
or should i ask my roomate to turn off netbios...since he does not use it at all.
As that port probably isn't open on your box I probably wouldn't worry about it. I would simply stop iptables from logging those packets, perhaps put a rule is to "-j REJECT" those packets?
well i havent really ever tried setting upiptables by hand.I use firestarter to do the job.
It has ports 22,80,25 and a couple others open for my p2p netowrk.
could u tell me how i can tell firestarter to tell iptables to reject these.
or where i might find the script that is run for the firewall and where i shud put in that particular line?
thanks a lot.
Sorry, whilst I could tell you the syntax of the iptables rule to reject the packets, or to disable logging I've got no idea where you'd put them in Debian, or how you would do this via firerstarter.
well i switched off my roomates netbios service but i still am getting those pings.
i will look into here to find the scrips but once i do ...all i have to do is a add "-j REJECT" to the file?do i not have to tell it which port this is coming from or what kind of packets to not log?
thanks a lot for your help.
well i did put those two lines in my firestartr script which is the script that is run for my firewall.
i hope this will solve the issue but i cant really check it since i am not at home right now.
I will let you know as soon as i get back there.
thanks for all the help though.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.