Help, can't connect at all with InternetFiltering enabled and ADSL !

Discussion in 'LnS English Forum' started by Valerino, Jan 20, 2005.

Thread Status:
Not open for further replies.
  1. Valerino

    Valerino Guest

    Heya.... please help me cos'im going really mad eheheheh :)
    I'm trying to evaluate Lns as a possible fw to use, but really i can't get it to work if i enable the packet filter (internet filtering).
    I've tried all the possible workarounds, included the rules on the Lns site for Internet ADSL, Aol, etc....
    My problem is simple, if i enable the internet filtering, i can't connect anymore with my ADSL :)
    I've searched thru the forum, but haven't found anything interesting....

    My configuration is XP-SP2, LNS 2.05p2, and i connect thru PPPOE (using raspppoe) over a 3Com HomeConnect DualLink (ethernet).

    I just get a lot of blocked packets like this :

    20/01/05,06:07:10 Addition, Uplink packet:
    0000:FF FF FF FF FF FF 00 40 .@

    0008:F4 27 80 F5 3C 12 11 09 ¶'ǧ<↕◄.

    0010:00 00 00 1B 01 01 00 03 ...←....

    0018:49 53 50 01 03 00 10 52 ISP...►R

    0020:53 50 45 00 00 00 00 66 SPE....f

    0028:1B 35 A9 AD FE C4 01 ←5®¡■─.

    Rule is "All other packets", type ETH, Address FF:FF:FF:FF:FF:FF, type Ethernet:3C12

    If i disable the packet filtering, all works well.... but i don't consider this as a workaround :)

    Any tip ?!

    valerio
     
  2. Xyzzy

    Xyzzy Registered Member

    Joined:
    Jan 11, 2005
    Posts:
    67
    Location:
    Poland
    After a quick look at Google I can say that this is a known problem with these modems. There also can be frames of type 3C13.
    You may try to add a rule just before the last one, allowing ethernet traffic between your MAC and your modem's MAC. But make sure, that in earlier rules all other types of packets are properly blocked.

    X.
     
  3. valerino

    valerino Guest

    hi man, thanks for the reply. What could i search for google on the subject ? I tried but haven't found anything interesting....
    btw, i've managed to let it work adding these rules. I couldn't find where to add the "Ethernet types" 3C12/3C13, so i made them generic using the Source/Destination i have from the log.
    Can you tell me if these are ok, and if it possible how to add'em for the specific ethernet types ?


    [Rule0]
    Statut=1
    Valide=1
    Direction=2
    Filtrage=1
    Avertir=0
    Continuer=0
    AlerteDlg=0
    Name=3Com ADSL Connection Rule1
    Description=For ADSL : Change destination with your mac address,ÿþchange source with the blocked source
    EthernetType=0
    IPProtocol=0
    EthernetAdd_PC_Criteria=1
    EthernetAdd_PC0=0
    EthernetAdd_PC1=192
    EthernetAdd_PC2=73
    EthernetAdd_PC3=63
    EthernetAdd_PC4=191
    EthernetAdd_PC5=11
    EthernetAdd_Net_Criteria=1
    EthernetAdd_Net0=0
    EthernetAdd_Net1=64
    EthernetAdd_Net2=244
    EthernetAdd_Net3=39
    EthernetAdd_Net4=128
    EthernetAdd_Net5=245
    IPAdd_PC_Criteria=0
    IPAdd_PC_Bas0=0
    IPAdd_PC_Bas1=0
    IPAdd_PC_Bas2=0
    IPAdd_PC_Bas3=0
    IPAdd_PC_Haut0=0
    IPAdd_PC_Haut1=0
    IPAdd_PC_Haut2=0
    IPAdd_PC_Haut3=0
    IPAdd_Net_Criteria=0
    IPAdd_Net_Bas0=0
    IPAdd_Net_Bas1=0
    IPAdd_Net_Bas2=0
    IPAdd_Net_Bas3=0
    IPAdd_Net_Haut0=0
    IPAdd_Net_Haut1=0
    IPAdd_Net_Haut2=0
    IPAdd_Net_Haut3=0
    IPFragmentOffset=0
    IPFragmentFlags=0
    TcpUdpPort_PC_Criteria=0
    TcpUdpPort_PC_Bas=0
    TcpUdpPort_PC_Haut=0
    TcpUdpPort_Net_Criteria=0
    TcpUdpPort_Net_Bas=0
    TcpUdpPort_Net_Haut=0
    IcmpCode_PC_Criteria=0
    IcmpCode_PC=0
    IcmpType_PC_Criteria=0
    IcmpType_PC=0
    BlockTCPServer=0
    TCPFlagsVal=0
    TCPFlagsMask=0
    PluginForEdition=

    [Rule1]
    Statut=1
    Valide=1
    Direction=1
    Filtrage=1
    Avertir=0
    Continuer=0
    AlerteDlg=0
    Name=3Com ADSL Connection Rule2
    Description=For ADSL : Change source with your mac address,ÿþchange destination with the blocked destination
    EthernetType=0
    IPProtocol=0
    EthernetAdd_PC_Criteria=1
    EthernetAdd_PC0=0
    EthernetAdd_PC1=64
    EthernetAdd_PC2=244
    EthernetAdd_PC3=39
    EthernetAdd_PC4=128
    EthernetAdd_PC5=245
    EthernetAdd_Net_Criteria=1
    EthernetAdd_Net0=0
    EthernetAdd_Net1=192
    EthernetAdd_Net2=73
    EthernetAdd_Net3=63
    EthernetAdd_Net4=191
    EthernetAdd_Net5=11
    IPAdd_PC_Criteria=0
    IPAdd_PC_Bas0=0
    IPAdd_PC_Bas1=0
    IPAdd_PC_Bas2=0
    IPAdd_PC_Bas3=0
    IPAdd_PC_Haut0=0
    IPAdd_PC_Haut1=0
    IPAdd_PC_Haut2=0
    IPAdd_PC_Haut3=0
    IPAdd_Net_Criteria=0
    IPAdd_Net_Bas0=0
    IPAdd_Net_Bas1=0
    IPAdd_Net_Bas2=0
    IPAdd_Net_Bas3=0
    IPAdd_Net_Haut0=0
    IPAdd_Net_Haut1=0
    IPAdd_Net_Haut2=0
    IPAdd_Net_Haut3=0
    IPFragmentOffset=0
    IPFragmentFlags=0
    TcpUdpPort_PC_Criteria=0
    TcpUdpPort_PC_Bas=0
    TcpUdpPort_PC_Haut=0
    TcpUdpPort_Net_Criteria=0
    TcpUdpPort_Net_Bas=0
    TcpUdpPort_Net_Haut=0
    IcmpCode_PC_Criteria=0
    IcmpCode_PC=0
    IcmpType_PC_Criteria=0
    IcmpType_PC=0
    BlockTCPServer=0
    TCPFlagsVal=0
    TCPFlagsMask=0
    PluginForEdition=

    [Rule2]
    Statut=1
    Valide=1
    Direction=1
    Filtrage=1
    Avertir=0
    Continuer=0
    AlerteDlg=0
    Name=3Com ADSL Connection Broadcast
    Description=For ADSL : Change source with your mac address
    EthernetType=0
    IPProtocol=0
    EthernetAdd_PC_Criteria=1
    EthernetAdd_PC0=0
    EthernetAdd_PC1=64
    EthernetAdd_PC2=244
    EthernetAdd_PC3=39
    EthernetAdd_PC4=128
    EthernetAdd_PC5=245
    EthernetAdd_Net_Criteria=1
    EthernetAdd_Net0=255
    EthernetAdd_Net1=255
    EthernetAdd_Net2=255
    EthernetAdd_Net3=255
    EthernetAdd_Net4=255
    EthernetAdd_Net5=255
    IPAdd_PC_Criteria=0
    IPAdd_PC_Bas0=0
    IPAdd_PC_Bas1=0
    IPAdd_PC_Bas2=0
    IPAdd_PC_Bas3=0
    IPAdd_PC_Haut0=0
    IPAdd_PC_Haut1=0
    IPAdd_PC_Haut2=0
    IPAdd_PC_Haut3=0
    IPAdd_Net_Criteria=0
    IPAdd_Net_Bas0=0
    IPAdd_Net_Bas1=0
    IPAdd_Net_Bas2=0
    IPAdd_Net_Bas3=0
    IPAdd_Net_Haut0=0
    IPAdd_Net_Haut1=0
    IPAdd_Net_Haut2=0
    IPAdd_Net_Haut3=0
    IPFragmentOffset=0
    IPFragmentFlags=0
    TcpUdpPort_PC_Criteria=0
    TcpUdpPort_PC_Bas=0
    TcpUdpPort_PC_Haut=0
    TcpUdpPort_Net_Criteria=0
    TcpUdpPort_Net_Bas=0
    TcpUdpPort_Net_Haut=0
    IcmpCode_PC_Criteria=0
    IcmpCode_PC=0
    IcmpType_PC_Criteria=0
    IcmpType_PC=0
    BlockTCPServer=0
    TCPFlagsVal=0
    TCPFlagsMask=0
    PluginForEdition=

    [Nb rules]
    Nb=3
     
  4. Xyzzy

    Xyzzy Registered Member

    Joined:
    Jan 11, 2005
    Posts:
    67
    Location:
    Poland
    Search for something along "ethernet 3c12 3com".
    I do not have LnS to test these.
    One rule should be enough.
    Direction - inbound/outbound; Ethernet: type Other; Ethernet adresses: your NIC and your modem. Put it just before Stop all rule. You may test directions- maybe just inbound will be enough.
    You cannot explicitly define Ethernet packet type.

    X.
     
Thread Status:
Not open for further replies.