[nos-bbs] polling?

Maiko Langelaar maiko at pcs.mb.ca
Tue May 8 07:47:34 EDT 2012


All I did was try and find a contact for a situation that I felt was a
bit of an emergency. My system was getting more traffic then it usually 
expects. Russ was getting the same. From an internet point of view the
traffic is negligible, but when it starts to traverse radio channels,
it can be a bit too much. I saw this as a probe, something I felt I
needed to bring to the attention of the rest of the AMPRnet people
so that they could deal with it. It was unexpected. I did the same
thing I would do as a regular network admin here at work.

Unfortunately sometimes we have to go to the lists to find out who
is responsible for a certain subnet, so that is what I did.

Rafal was kind enough to come online and *fix* it, BUT, unfortunately
as I type this, I am still getting SNMP probes and such, so I've decided
to use iptables on my FORWARD chain to drop anymore packets from his
system (FORWARD because my packets to JNOS do eth0 <-> tun0) :

    iptables -A FORWARD -s <gateway ip addr> -j LOG
    iptables -A FORWARD -s <gateway ip addr> -j DROP
    tail -f /var/log/syslog

>> the original question by Russ never produced the suggestion that by 
>> using JNOS ACCESS that the perp could be screened out of a local node.

I don't have JNOS IP ACCESS compiled in, so I've opted for iptables.

Maiko Langelaar / VE4KLM




More information about the nos-bbs mailing list