Hi, When I use mtr-tiny (text mode version) to check on a destination, the firewall logs get flooded a lot! No matter if I mtr from an inside host (ie: desktop) or the firewall itself.
ex: on the firewall itself, "mtr 1.2.3.4" and suppose there are 6 hops to reach it from A.A.A.A to F.F.F.F I get something : Shorewall:+net-fw:ACCEPT:IN=eth0 OUT= SRC=A.A.A.A DST=$FW LEN=56 TOS=0x00 PREC=0x00 TTL=255 ID=34268 PROTO=ICMP TYPE=11 CODE=0 [SRC=$FW DST=1.2.3.4 LEN=64 TOS=0x00 PREC=0x00 TTL=1 ID=54513 PROTO=ICMP TYPE=8 CODE=0 ID=65151 SEQ=59520 ] At start, every hop from A.A.A.A to F.F.F.F generates one of these lines and after each hop have been reached, there's a variation: Only some of the hops on the way generate one of these lines every second. Is this normal behaviour or is there something wrong somewhere? Note: mtr's "Loss%" column stays at 0.0% all the time, no issue there. -- ObNox
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
