Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Getting Iptables New not syn log message more time
Special Forums IP Networking Getting Iptables New not syn log message more time Post 302540765 by pasindu on Thursday 21st of July 2011 01:59:16 PM
Old 07-21-2011
Getting Iptables New not syn log message more time
Hi guys,

I having Iptables log message. It's coming more time. It's can't handle to linux squid.

Firewall -> 192.168.102.2 <iptables>
squid -> 192.168.102.2 <transparent proxy (port 3128)>

error ->
Jul 21 23:58:16 mig [559289.955344] New not syn:IN= OUT=eth0 SRC=192.168.102.2 DST=192.168.102.96 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=53063 DF PROTO=TCP SPT=3128 DPT=1638 WINDOW=11680 RES=0x00 ACK URGP=0

<This message getting all 192.168.102.0/32 network ip's>

getting above message more and move time. can't handle. full network getting slow .squid bandwidth not utilize. but internet slow.
 

9 More Discussions You Might Find Interesting

1. Programming

Getting an ACK for RAW SYN packet

Hi, I'm trying to create a RAW TCP SYN packet and send it from one Linux machine to another. I know the packet I have created is well formed and is received by the peer. Now what I want is to get an ACK for my SYN. I want the peer's Network protocol stack to send me an ACK for that. I know... (17 Replies)
Discussion started by: zampya
17 Replies

2. Linux

Security issue with TCP SYN packets on Linux

Hi all, A security scanner has been done on a linux server and have found that The remote host does not discard RCP SYN packets which have the FIN flag set. It tells that I need to request a patch which I haven't found yet. I have Red Hat Linux release 7.0 (Guinness) Kernel 2.2.16-22... (2 Replies)
Discussion started by: bert.n
2 Replies

3. Shell Programming and Scripting

syn

suppose I have data in a log file in the below format date|time|name|email|address|SSN date|time|name|email|address|SSN date|time|name|email|address|SSN is it possible to create a search engine which takes input as three filters out of which two filters should be optional? say i give... (4 Replies)
Discussion started by: wannalearn
4 Replies

4. UNIX for Advanced & Expert Users

What is FIN/ACK/SYN

Please tell me details about terms FIN, ACK, SYN, RST; used in TCP based communication. Also tell me any RFC or other document which tell me details about these terms. (1 Reply)
Discussion started by: mansoorulhaq
1 Replies

5. Shell Programming and Scripting

Redirecting STDERR message to STDOUT & file at same time

Friends I have to redirect STDERR messages both to screen and also capture the same in a file. 2 > &1 | tee file works but it also displays the non error messages to file, while i only need error messages. Can anyone help?? (10 Replies)
Discussion started by: vikashtulsiyan
10 Replies

6. UNIX for Dummies Questions & Answers

Display message on screen and flat file at same time

Hi guys, I have a script that call another, the other displays de message and I can print directly to the flat file, but in one command I am searchig that this message can be displayed in the screen and in the flat file in one command. I am doing something like this: var=$(./Example.sh)... (2 Replies)
Discussion started by: pipoca
2 Replies

7. UNIX for Dummies Questions & Answers

plug in for syn on

I am using vim version 7.1.314.It don't have syn on.Is there any plug in available for syn on or I have to update the version. (2 Replies)
Discussion started by: karthigayan
2 Replies

8. Solaris

TCP SYN timer

Can anybody please tell me how I can figure out on a solaris server how long it would take a TCP SYN request to timeout before it gets a SYN_ACK back? Thanks, (3 Replies)
Discussion started by: Pouchie1
3 Replies

9. Shell Programming and Scripting

How can view log messages between two time frame from /var/log/message or any type of log files

How can view log messages between two time frame from /var/log/message or any type of log files. when logfiles are very big and especially many messages with in few minutes, I would like to display log messages between 5 minute interval. Could you pls give me the command? (1 Reply)
Discussion started by: johnveslin
1 Replies

LEARN ABOUT REDHAT

aggregate-ios

AGGREGATE-IOS(1)					      General Commands Manual						  AGGREGATE-IOS(1)

NAME

       aggregate-ios - optimise a concatenated set of cisco/IOS prefix filters to help make them nice and short.

SYNOPSIS

       aggregate-ios <source_config >optimised_config

DESCRIPTION

       Takes  cisco IOS configuration on stdin, and optimises any prefix filters found using aggregate(1).  Optimised filters are produced on std-
       out.

OPTIONS

       None.

DIAGNOSTICS

       Any diagnostics produced by aggregate(1) are passed through on stderr.

EXAMPLES

       The following configuration fragment:

	 ip prefix-list AS65530 description Foo, Inc
	 ip prefix-list AS65530 permit 10.1.0.0/16
	 ip prefix-list AS65530 permit 10.2.0.0/16
	 ip prefix-list AS65530 permit 10.2.1.0/24
	 ip prefix-list AS65530 permit 10.3.0.0/16
	 ip prefix-list AS65531 description Bar.Com
	 ip prefix-list AS65531 seq 5 permit 192.168.1.0/24
	 ip prefix-list AS65531 seq 10 permit 192.168.2.0/24
	 ip prefix-list AS65531 seq 15 permit 192.168.0.0/19

       is optimised as follows:

	 ip prefix-list AS65530 permit 10.1.0.0/16 le 24
	 ip prefix-list AS65530 permit 10.2.0.0/15 le 24
	 ip prefix-list AS65531 permit 192.168.0.0/19 le 24

SEE ALSO

       aggregate(1)

HISTORY

       Aggregate-ios was written by Joe Abley <jabley@mfnx.net>.

BUGS

       All those in aggregate(1) and then some :)

Joe Abley							 2000 November 27						  AGGREGATE-IOS(1)
All times are GMT -4. The time now is 06:23 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy