Hi,
Are you sure that there isn''t some computer on your local net that is
misconfigured to use 192.168.10.20? It could be a laptop that''s
configured
for some other net?
When you run ethereal, you can see whether the offending package comes from
your internal or external interface (assuming that you are running ethereal
on your internet-router).
If you want to get a slight protection against packages with a spoofed
source ip-address, you can add the norfc1918 option to the external
interface of your router (in the interfaces file). See
http://www.shorewall.net/Documentation.htm#Interfaces
Hope this helps
Rune
(rune.kock@gmail.com)
On 12/2/05, SteZZz <stezzz@gmail.com> wrote:>
> hi i have a little problem, in my internet connection there are some
> intruders i think
> i spotted some request from an internal ip adres 192.168.10.20 but i
don''t
> have that ip adress inserted into my network, there is only 192.168.0range.
> i did a ethereal scan and he spotted that it was a snmp protocol, this is
> for managing a network and stuff like that,
> well i wanna put my security more up in my shorewall so nobody can get
> in....
> hope u can help me with this, just ask me for what kinda info u need so i
> can post it
>
> --
> Gr. SteZZz