On 2016-09-06 12:58, Walter H. wrote:
Hello,
does anybody know with which rule I can catch these entries:
[317607.438061] IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:4c:72:b9:56:16:3e:08:00
SRC=0.0.0.0 DST=255.255.255.255 LEN=72 TOS=0x00 PREC=0x00 TTL=255 ID=1624
PROTO=139
According to my /etc/protocols, protocol 139 is called 'hip' (Host
Identity Protocol). So, something like
iptables -A INPUT -i br0 -p 139 -j DROP
or
iptables -A INPUT -i br0 -p hip -j DROP
See also: man iptables
--
Rob
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
