On Sunday 13 February 2005 16:09, Georgi Alexandrov wrote: > Jose Maria Lopez Hernandez wrote: > >El dom, 13-02-2005 a las 09:28 +0300, Mikhail Zotov escribiÃ: > >>I have a Linux machine (with a static routable IP address) > >>connected to a windoops LAN. As is known, there is certain > >>"noise" in windoops networks, which can be silently dropped > >>by a rule like this: > >> > >>iptables -A INPUT -p udp --dport 135:139 -j DROP > >> > > > >That's OK, but also DROP port 445 because there's also a great > >amount of traffic in that port. > > > How exactly is that OK ? > The only point in a rule like that maybe is - if you are logging not > matched packets at the end of the filter table/INPUT chain and don't > want your logs flooded by that broadcast traffic. Yes, I just want to drop them silently without logging. Otherwise get hundreds of "noisy" records every day. Regards, Mikhail
