hey,
I am running Debian Sid.My netowrk setup is not complicated at all...i am behind a router whose address is 192.168.0.1 and my address is 192.168.0.2
Now i keep getting logs of pings/probes sent by my router to my machine.the look like this:I dont exactly know what this is but i am guessing these are pings from the router to my machine.
MY log files in /var/log are flooded with these messages including dmesg and messages.
Also when i go into console mode after turning off X i keep getting these messages almost every minute and like 5 at a time.Even if i am editing a file in vi i get this message and it becmes very irritating since i have to clse that file and open it again after these have stopped.
I have been having this problem since the last month or so.
Oh and if it matters i run kernel 2.4.24
i would really appreciate it if someone could point me in the right direction to stopping these messages from being logged/displayed.
thanks

UDP port 137 (and TCP 137 for that matter) is used by the NetBIOS Name Service.

Does your router have any kind of firewall, or is it forwarding any/all traffic to your machine? It sounds to me like you are getting lots of Windows orientated traffic from the web. Although they look like they are from your router this may not be the case - will your router NAT incomming (read new connections) traffic? If it will then these could infact be from any external IP address.

Are there any NetBIOS related settings on your router? What model is it?

cheers

Jamie...

i have a netgear router.I have opened up ports 22 and 80 and forwarded them to my machine since i access my computer from school and work.My roomate is running win XP and i think he does have netbios running.I also think that my router does try to determine my machine name since when i go onto my router page and click on attached devices...it shows my roomates machine name and mine s unknown...so maybe it is trying to determine the name of my machine?
or should i ask my roomate to turn off netbios...since he does not use it at all.

As that port probably isn't open on your box I probably wouldn't worry about it. I would simply stop iptables from logging those packets, perhaps put a rule is to "-j REJECT" those packets?

cheers

Jamie..

well i havent really ever tried setting upiptables by hand.I use firestarter to do the job.
It has ports 22,80,25 and a couple others open for my p2p netowrk.
could u tell me how i can tell firestarter to tell iptables to reject these.
or where i might find the script that is run for the firewall and where i shud put in that particular line?
thanks a lot.

Sorry, whilst I could tell you the syntax of the iptables rule to reject the packets, or to disable logging I've got no idea where you'd put them in Debian, or how you would do this via firerstarter.

I'm sure someone knows will fill in the blanks.

Jamie...

well i switched off my roomates netbios service but i still am getting those pings.
i will look into here to find the scrips but once i do ...all i have to do is a add "-j REJECT" to the file?do i not have to tell it which port this is coming from or what kind of packets to not log?
thanks a lot for your help.

You'll need to add something like to your script(s).

cheers

Jamie...

well i did put those two lines in my firestartr script which is the script that is run for my firewall.
i hope this will solve the issue but i cant really check it since i am not at home right now.
I will let you know as soon as i get back there.
thanks for all the help though.