From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <mcr@sandelman.ca>
Received: from tuna.sandelman.ca (unknown
	[IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3])
	by huchra.bufferbloat.net (Postfix) with ESMTP id 4CD0E202102
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sun, 13 Jan 2013 12:22:52 -0800 (PST)
Received: from sandelman.ca (unknown [IPv6:2607:f0b0:f:2::247])
	by tuna.sandelman.ca (Postfix) with ESMTP id 03CCD20168
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sun, 13 Jan 2013 15:27:24 -0500 (EST)
Received: by sandelman.ca (Postfix, from userid 179)
	id 0865263765; Sun, 13 Jan 2013 15:22:00 -0500 (EST)
Received: from sandelman.ca (localhost [127.0.0.1])
	by sandelman.ca (Postfix) with ESMTP id EC83763761
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sun, 13 Jan 2013 15:22:00 -0500 (EST)
From: Michael Richardson <mcr@sandelman.ca>
To: cerowrt-devel@lists.bufferbloat.net
In-Reply-To: <CAA93jw6uY8P0RUMsdGsAHmWSXYu5tsxf1VCpFUT96NFCEn2ZbA@mail.gmail.com>
References: <CAA93jw6uY8P0RUMsdGsAHmWSXYu5tsxf1VCpFUT96NFCEn2ZbA@mail.gmail.com>
X-Mailer: MH-E 8.3; nmh 1.3-dev; XEmacs 21.4 (patch 22)
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0;
	<'$9xN5Ub#
	z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
Date: Sun, 13 Jan 2013 15:22:00 -0500
Message-ID: <1893.1358108520@sandelman.ca>
Sender: mcr@sandelman.ca
Subject: Re: [Cerowrt-devel] blocking probes...
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
	<cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Sun, 13 Jan 2013 20:22:52 -0000


>>>>> "Dave" == Dave Taht <dave.taht@gmail.com> writes:
    Dave> one of the underused features of cerowrt is that I stuck a sensor on
    Dave> xinetd to detect attempts to telnet or ftp to the router and cut off
    Dave> access to some other services, notably ssh.

    Dave> I would have loved to extend this facility to either do it
    Dave> entirely in 
    Dave> iptables or leverage xinetd to talk to iptables to (for example)
    Dave> disable access to the web server.

I didn't know that was there... what version does it start?
I get lots of probes... can I run this detector on port-22 (on the
outside) as well?

With the 3800s having dried up, I'm now really concerned... what if my
device blows up?  and I've got nothing to experiment with.

I was planning to buy more in the new year (now), but I didn't do it
fast enough.  Given that they have dried up now, I'm thinking that I
need to go back and replace my 3800 with something else that can run
cerowrt, or at least can run the QOS scripts.   
I am not happy running my firewall as a VM, but I certainly could do
that... 

-- 
]               Never tell me the odds!                 | ipv6 mesh networks [ 
]   Michael Richardson, Sandelman Software Works        | network architect  [ 
]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails    [