Re: [Cerowrt-devel] arp for 0.0.0.0

Development issues regarding the cerowrt test router project
 help / color / mirror / Atom feed

From: Maciej Soltysiak <maciej@soltysiak.com>
To: Michael Richardson <mcr@sandelman.ca>
Cc: cerowrt-devel@lists.bufferbloat.net
Subject: Re: [Cerowrt-devel] arp for 0.0.0.0
Date: Fri, 25 Jan 2013 19:01:40 +0100	[thread overview]
Message-ID: <CAMZR1YBuT_5y9feJZuaP1v5now5YCb6V0KoPdkqRwdrWc9MCiQ@mail.gmail.com> (raw)
In-Reply-To: <5858.1359130931@sandelman.ca>

[-- Attachment #1: Type: text/plain, Size: 1092 bytes --]

On 25 Jan 2013 17:23, "Michael Richardson" <mcr@sandelman.ca> wrote:

> It also seems that there is no control to keep dnsmasq from answering
> on my ge00.    I guess some trojans try to use me for DOS amplication by
> asking for isc.org continuously?
There is.

Although dnsmasq listens on 0.0.0.0:53 and :::53 it is not responding on
ge00.
Thanks to list notinterface       ge00 in /etc/config/dhcp

This means that port 53 is open, but DNS is not accessible from ge00, see:

solt@mkslnx004:~$ nmap -sV -p 53 A.B.C.D

Starting Nmap 5.21 ( http://nmap.org ) at 2013-01-25 18:55 CET
Nmap scan report for XXXXX (A.B.C.D)
Host is up (0.018s latency).
PORT   STATE SERVICE    VERSION
53/tcp open  tcpwrapped

Service detection performed. Please report any incorrect results at
http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 0.75 seconds

solt@mkslnx004:~$ nslookup kernel.org A.B.C.D
;; connection timed out; no servers could be reached

If you want to close that down you could be drop all on ge00 by: iptables
-I zone_wan -j DROP

or just filter 53.

Regards,
Maciej

[-- Attachment #2: Type: text/html, Size: 1588 bytes --]

     prev parent reply	other threads:[~2013-01-25 18:01 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2013-01-25 16:22 Michael Richardson
2013-01-25 18:01 ` Maciej Soltysiak [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

  List information: https://lists.bufferbloat.net/postorius/lists/cerowrt-devel.lists.bufferbloat.net/

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=CAMZR1YBuT_5y9feJZuaP1v5now5YCb6V0KoPdkqRwdrWc9MCiQ@mail.gmail.com \
    --to=maciej@soltysiak.com \
    --cc=cerowrt-devel@lists.bufferbloat.net \
    --cc=mcr@sandelman.ca \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox