Subject: Dialup connections and daily worm terror
To: None <tech-kern@netbsd.org, netbsd-users@netbsd.org>
From: Michael Kukat <michael@unixiron.org>
List: netbsd-users
Date: 09/03/2003 06:43:52
Hello,

i have a massive problem with an ISDN dialup setup at a friend. The machine is
set up for auto-dialing, and should have a idle timeout of 120 seconds. The
problem ist... the interface _NEVER_ goes idle, as there are mountains of
connection scans on port 135 (Blaster/LoveSan, whatever). The manpage sounds
like just outgoing connections will be taken into account when calculating the
idle time, but i looked into the kernel, found if_spppsubr.c and saw the
variable sp->pp_last_activity being set for incoming and outgoing packets.

As there seems to be no official way, i just commented out the 2 lines in
sppp_input, but i have to try tonight, if this really does the job like i want
it to.

Maybe this hint can help others having the same problem, and maybe someone is
interestes to make this configurable. Even some option in kernel config to
disable triggering idle times on incoming packets would help lots of people
with dialup lines in today's world i think.

...Michael

-- 
http://www.unixiron.org/    Home Powered by: (Net|Open|Free)BSD IRIX NonStop-UX
Solaris AIX HP-UX Tru64 MUNIX Ultrix VMS SINIX Dolphin_Unix OpenStep MacOS A/UX