Mailinglist Archive: opensuse (1470 mails)

< Previous Next >
Re: [opensuse] What is the meaning of these firewall log entries?
  • From: "Carlos E. R." <robin.listas@xxxxxxxxxxxxxx>
  • Date: Sun, 14 Feb 2016 00:33:20 +0100 (CET)
  • Message-id: <alpine.LSU.2.20.1602132335260.7142@Grypbagne.inyvabe>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



On Saturday, 2016-02-13 at 19:50 +0100, Carlos E. R. wrote:

A tcp dump? Or tell SuSEfirewall2 to log everything?

FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="no"
FW_LOG_ACCEPT_ALL="no"

I can set all of them to "yes" prior to hibernation, and undo after. It is
simple to do.

Done. Let's extract the firewall data.

<3.4> 2016-02-13 21:01:07 Telcontar pm-utils - - - Hibernating the system now
(04)...
<3.5> 2016-02-13 21:01:07 Telcontar pm-utils - - - There appears not be any
pending nntp post to be sent. I just checked :-)
<1.5> 2016-02-13 21:01:07 Telcontar network 24855 - - redirecting to "systemctl
--signal=9 kill network.service"
<3.5> 2016-02-13 21:01:07 Telcontar systemd 1 - - network@eth0.service: main
process exited, code=killed, status=9/KILL
<3.6> 2016-02-13 21:01:07 Telcontar systemd 1 - - Stopping LSB: Network time
protocol daemon (ntpd)...
<3.6> 2016-02-13 21:01:07 Telcontar ntp 24879 - - Shutting down network time
protocol daemon (NTPD)..done
<1.6> 2016-02-13 21:01:07 Telcontar org.freedesktop.UDisks 1047 - - ****
/proc/self/mountinfo changed
<3.6> 2016-02-13 21:01:07 Telcontar systemd 1 - - Stopped LSB: Network time
protocol daemon (ntpd).
<3.4> 2016-02-13 21:01:07 Telcontar pm-utils - - - Hibernating (95)...


So I have to look around 21:01:07

There are too many entries, so I'll filter.

grep "192.168.1" /var/log/firewall | less -S

Better, but I had to clear out some entries manually.

<0.4> 2016-02-13 21:01:00 Telcontar kernel - - - [1109974.805902]
SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:f8:8e:85:64:78:f2:08:00
SRC=8.8.8.8 DST=192.168.1.14 LEN=109 TOS=0x00 PREC=0x00 TTL=53 ID=50379 PROTO=UDP
SPT=53 DPT=34795 LEN=89

<0.4> 2016-02-13 21:01:01 Telcontar kernel - - - [1109974.942422] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=168 TOS=0x10 PREC=0x00 TTL=64 ID=62557 DF PROTO=TCP SPT=22 DPT=35744 WINDOW=660 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D7DEF42244330) <0.4> 2016-02-13 21:01:01 Telcontar kernel - - - [1109974.957405] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=152 TOS=0x10 PREC=0x00 TTL=64 ID=62558 DF PROTO=TCP SPT=22 DPT=35744 WINDOW=660 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D7DF342244BBF)

<0.4> 2016-02-13 21:01:02 Telcontar kernel - - - [1109975.889553] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=91 TOS=0x00 PREC=0x00 TTL=64 ID=47192 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK PSH URGP=0 OPT (0101080A00293F374224437E) <0.4> 2016-02-13 21:01:02 Telcontar kernel - - - [1109975.891009] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47193 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK URGP=0 OPT (0101080A00293F3742244F73)

<0.4> 2016-02-13 21:01:04 Telcontar kernel - - - [1109978.694724] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=21 DPT=45873 WINDOW=5792 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A0029404F42245A6601030300) <0.4> 2016-02-13 21:01:04 Telcontar kernel - - - [1109978.746814] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=328 TOS=0x10 PREC=0x00 TTL=64 ID=5135 DF PROTO=TCP SPT=21 DPT=45873 WINDOW=5792 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029405442245A67) <0.4> 2016-02-13 21:01:05 Telcontar kernel - - - [1109978.952868] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=91 TOS=0x00 PREC=0x00 TTL=64 ID=47194 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029406942244F73) <0.4> 2016-02-13 21:01:05 Telcontar kernel - - - [1109978.954277] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47195 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK URGP=0 OPT (0101080A0029406942245B6A) <0.4> 2016-02-13 21:01:05 Telcontar kernel - - - [1109979.237673] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=296 TOS=0x10 PREC=0x00 TTL=64 ID=62559 DF PROTO=TCP SPT=22 DPT=35744 WINDOW=660 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D822142244BCE)

<0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.109873] SFW2-INext-ACC-UDP IN=eth0 OUT= MAC= SRC=192.168.1.14 DST=224.0.0.251 LEN=71 TOS=0x00 PREC=0x00 TTL=255 ID=19143 DF PROTO=UDP SPT=5353 DPT=5353 LEN=51 <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.109977] SFW2-INext-ACC-UDP IN=eth0 OUT= MAC= SRC=192.168.1.14 DST=224.0.0.251 LEN=95 TOS=0x00 PREC=0x00 TTL=255 ID=19144 DF PROTO=UDP SPT=5353 DPT=5353 LEN=75

<0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110335] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=225 TOS=0x00 PREC=0xC0 TTL=64 ID=21476 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3669 PROTO=UDP SPT=6666 DPT=6666 LEN=177 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110374] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=225 TOS=0x00 PREC=0xC0 TTL=64 ID=21476 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3669 PROTO=UDP SPT=6666 DPT=6666 LEN=177 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110393] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=225 TOS=0x00 PREC=0xC0 TTL=64 ID=21477 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3671 PROTO=UDP SPT=6666 DPT=6666 LEN=177 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110407] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=225 TOS=0x00 PREC=0xC0 TTL=64 ID=21477 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3671 PROTO=UDP SPT=6666 DPT=6666 LEN=177 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110788] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=371 TOS=0x00 PREC=0xC0 TTL=64 ID=21478 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=3673 PROTO=UDP SPT=6666 DPT=6666 LEN=323 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110815] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=371 TOS=0x00 PREC=0xC0 TTL=64 ID=21478 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=3673 PROTO=UDP SPT=6666 DPT=6666 LEN=323 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110828] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=372 TOS=0x00 PREC=0xC0 TTL=64 ID=21479 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=3675 PROTO=UDP SPT=6666 DPT=6666 LEN=324 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110838] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=372 TOS=0x00 PREC=0xC0 TTL=64 ID=21479 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=3675 PROTO=UDP SPT=6666 DPT=6666 LEN=324 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110851] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=371 TOS=0x00 PREC=0xC0 TTL=64 ID=21480 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=3677 PROTO=UDP SPT=6666 DPT=6666 LEN=323 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110862] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=371 TOS=0x00 PREC=0xC0 TTL=64 ID=21480 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=3677 PROTO=UDP SPT=6666 DPT=6666 LEN=323 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110875] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=372 TOS=0x00 PREC=0xC0 TTL=64 ID=21481 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=3679 PROTO=UDP SPT=6666 DPT=6666 LEN=324 ] <0.4> 2016-02-13 21:01:07 Telcontar kernel - - - [1109981.110885] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=372 TOS=0x00 PREC=0xC0 TTL=64 ID=21481 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=3679 PROTO=UDP SPT=6666 DPT=6666 LEN=324 ] <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.014818] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=91 TOS=0x00 PREC=0x00 TTL=64 ID=47196 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029419B42245B6A) <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.016213] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47197 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK URGP=0 OPT (0101080A0029419B42246760) <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.526824] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=91 TOS=0x00 PREC=0x00 TTL=64 ID=47198 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK PSH URGP=0 OPT (0101080A002941CE42246760) <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.527299] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21482 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3701 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.527320] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21482 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3701 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:08 Telcontar kernel - - - [1109982.528359] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47199 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK URGP=0 OPT (0101080A002941CE42246960)

<0.4> 2016-02-13 21:01:09 Telcontar kernel - - - [1109983.747804] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=21 DPT=45876 WINDOW=5792 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A0029424842246E2401030300) <0.4> 2016-02-13 21:01:09 Telcontar kernel - - - [1109983.748319] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21483 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=3733 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ] <0.4> 2016-02-13 21:01:09 Telcontar kernel - - - [1109983.748353] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21483 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=3733 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ]

<0.4> 2016-02-13 21:01:09 Telcontar kernel - - - [1109983.788714]
SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00
SRC=192.168.1.2 DST=192.168.1.14 LEN=328 TOS=0x10 PREC=0x00 TTL=64 ID=5283 DF
PROTO=TCP SPT=21 DPT=45876 WINDOW=5792 RES=0x00 ACK PSH URGP=0 OPT
(0101080A0029424C42246E24)

<0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109983.996074] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=5792 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A0029426142246F1C01030300) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109983.997196] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47450 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A0029426142246F1D)

<0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.155897] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21484 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=3795 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ] <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.155931] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21484 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=3795 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ]

<0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.286306] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=28960 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A258D870F4224703E01030306) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.286790] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=43602 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D87104224703F) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.298920] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=193 TOS=0x00 PREC=0x00 TTL=64 ID=43603 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=470 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D87134224703F) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.298953] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=43604 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=470 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D87134224703F) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.298972] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=43605 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=470 RES=0x00 ACK FIN URGP=0 OPT (0101080A258D87134224703F) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.299524] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=43606 DF PROTO=TCP SPT=4080 DPT=42574 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D87134224704C) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.326570] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=28960 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A258D87194224706701030306) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.326620] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=28960 RES=0x00 ACK SYN URGP=0 OPT (020405B40402080A258D871A4224706701030306) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.327076] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=53721 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871A42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.327106] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=55648 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871A42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.340410] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=53722 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D871D42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.340438] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=53723 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871D42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.340653] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=2948 TOS=0x00 PREC=0x00 TTL=64 ID=53724 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871D42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.340914] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=2742 TOS=0x00 PREC=0x00 TTL=64 ID=53726 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK PSH FIN URGP=0 OPT (0101080A258D871D42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.341392] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=21485 DF PROTO=TCP SPT=4080 DPT=42575 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871D42247076)

<0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.345817] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=181 TOS=0x00 PREC=0x00 TTL=64 ID=55649 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK PSH URGP=0 OPT (0101080A258D871E42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.345876] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=55650 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871E42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.346103] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=2948 TOS=0x00 PREC=0x00 TTL=64 ID=55651 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871E42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.346363] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=3303 TOS=0x00 PREC=0x00 TTL=64 ID=55653 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK PSH FIN URGP=0 OPT (0101080A258D871E42247067) <0.4> 2016-02-13 21:01:10 Telcontar kernel - - - [1109984.347037] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=21486 DF PROTO=TCP SPT=4080 DPT=42576 WINDOW=470 RES=0x00 ACK URGP=0 OPT (0101080A258D871F4224707B)

<0.4> 2016-02-13 21:01:11 Telcontar kernel - - - [1109985.589255] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21487 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3857 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:11 Telcontar kernel - - - [1109985.589276] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21487 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3857 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:11 Telcontar kernel - - - [1109985.590192] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=47201 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK URGP=0 OPT (0101080A0029430042247556)


<0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.036346] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=96 TOS=0x00 PREC=0x00 TTL=64 ID=47467 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029432C422476CB) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.110230] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=89 TOS=0x00 PREC=0x00 TTL=64 ID=47468 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029433442247715) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.110696] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21488 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3933 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.110736] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21488 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3933 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.115467] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=483 TOS=0x00 PREC=0x00 TTL=64 ID=47469 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A002943344224775F) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.116332] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=53 TOS=0x00 PREC=0x00 TTL=64 ID=47470 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029433442247764) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.244508] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1076 TOS=0x00 PREC=0x00 TTL=64 ID=47471 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029434142247765) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.245443] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1076 TOS=0x00 PREC=0x00 TTL=64 ID=47472 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A00294341422477E5) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.246129] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=301 TOS=0x00 PREC=0x00 TTL=64 ID=47473 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A00294341422477E6) <0.4> 2016-02-13 21:01:12 Telcontar kernel - - - [1109986.247318] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=53 TOS=0x00 PREC=0x00 TTL=64 ID=47474 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A00294341422477E7)

<0.4> 2016-02-13 21:01:13 Telcontar kernel - - - [1109986.949751]
SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00
SRC=192.168.1.2 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=47538 DF
PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT
(0101080A0029438742247AA5)

<0.4> 2016-02-13 21:01:13 Telcontar kernel - - - [1109987.130372] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21489 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4095 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ] <0.4> 2016-02-13 21:01:13 Telcontar kernel - - - [1109987.163218] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21489 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4095 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ]


<0.4> 2016-02-13 21:01:14 Telcontar kernel - - - [1109988.769471] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=01:00:5e:00:00:01:f8:8e:85:64:78:f2:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=0 DF OPT (94040000) PROTO=2 <0.4> 2016-02-13 21:01:14 Telcontar kernel - - - [1109988.804317] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60804 DF PROTO=TCP SPT=80 DPT=35268 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A0029440842247FAB)

<0.4> 2016-02-13 21:01:15 Telcontar kernel - - - [1109989.362122] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=323 TOS=0x00 PREC=0xC0 TTL=64 ID=21490 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=4143 PROTO=UDP SPT=6666 DPT=6666 LEN=275 ] <0.4> 2016-02-13 21:01:15 Telcontar kernel - - - [1109989.381429] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=323 TOS=0x00 PREC=0xC0 TTL=64 ID=21490 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=4143 PROTO=UDP SPT=6666 DPT=6666 LEN=275 ] <0.4> 2016-02-13 21:01:15 Telcontar kernel - - - [1109989.381429] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21491 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4145 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ] <0.4> 2016-02-13 21:01:15 Telcontar kernel - - - [1109989.381429] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21491 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4145 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109990.150667] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=317 TOS=0x00 PREC=0xC0 TTL=64 ID=21492 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=289 TOS=0x00 PREC=0x00 TTL=64 ID=4265 PROTO=UDP SPT=6666 DPT=6666 LEN=269 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109990.150688] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=317 TOS=0x00 PREC=0xC0 TTL=64 ID=21492 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=289 TOS=0x00 PREC=0x00 TTL=64 ID=4265 PROTO=UDP SPT=6666 DPT=6666 LEN=269 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109991.146180] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21493 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4327 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109991.146202] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=322 TOS=0x00 PREC=0xC0 TTL=64 ID=21493 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4327 PROTO=UDP SPT=6666 DPT=6666 LEN=274 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.137033] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21494 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4393 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.137051] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21494 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4393 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.215382] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=186 TOS=0x00 PREC=0x00 TTL=64 ID=47795 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459542248EAC) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.228608] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=279 TOS=0x00 PREC=0x00 TTL=64 ID=47796 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459642248F38) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.229347] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=53 TOS=0x00 PREC=0x00 TTL=64 ID=47797 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459742248F45) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.285422] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1076 TOS=0x00 PREC=0x00 TTL=64 ID=47798 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459C42248F46) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.289482] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1076 TOS=0x00 PREC=0x00 TTL=64 ID=47799 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459C42248F7E) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.289498] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=47800 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A0029459C42248F7E) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.290091] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1500 TOS=0x00 PREC=0x00 TTL=64 ID=47801 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A0029459D42248F7E) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.319881] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=228 TOS=0x00 PREC=0x00 TTL=64 ID=47802 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A0029459D42248F82) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.319919] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=10188 TOS=0x00 PREC=0x00 TTL=64 ID=47803 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A0029459D42248F82) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.320858] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=2948 TOS=0x00 PREC=0x00 TTL=64 ID=47810 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A002945A042248FA0) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.350584] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=11636 TOS=0x00 PREC=0x00 TTL=64 ID=47812 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A002945A042248FA0) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.350599] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=1036 TOS=0x00 PREC=0x00 TTL=64 ID=47820 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A002945A042248FA1) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.350620] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=2948 TOS=0x00 PREC=0x00 TTL=64 ID=47821 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A002945A042248FA1) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.351825] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=2948 TOS=0x00 PREC=0x00 TTL=64 ID=47823 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK URGP=0 OPT (0101080A002945A342248FBF) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.381057] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=7263 TOS=0x00 PREC=0x00 TTL=64 ID=47825 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A002945A342248FBF) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109992.442050] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=91 TOS=0x00 PREC=0x00 TTL=64 ID=47209 DF PROTO=TCP SPT=1441 DPT=139 WINDOW=5840 RES=0x00 ACK PSH URGP=0 OPT (0101080A002945AB42248E11)

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109993.116517] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:01:02:03:04:05:08:00 SRC=192.168.1.2 DST=192.168.1.14 LEN=8337 TOS=0x00 PREC=0x00 TTL=64 ID=47961 DF PROTO=TCP SPT=80 DPT=35261 WINDOW=6432 RES=0x00 ACK PSH URGP=0 OPT (0101080A002945ED4224929F) <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109993.116895] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21495 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4457 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109993.116915] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=333 TOS=0x00 PREC=0xC0 TTL=64 ID=21495 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4457 PROTO=UDP SPT=6666 DPT=6666 LEN=285 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109994.121211] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=319 TOS=0x00 PREC=0xC0 TTL=64 ID=21496 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=4523 PROTO=UDP SPT=6666 DPT=6666 LEN=271 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109994.121229] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=319 TOS=0x00 PREC=0xC0 TTL=64 ID=21496 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=4523 PROTO=UDP SPT=6666 DPT=6666 LEN=271 ]


<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109995.114710] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21497 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4587 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109995.114728] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=321 TOS=0x00 PREC=0xC0 TTL=64 ID=21497 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4587 PROTO=UDP SPT=6666 DPT=6666 LEN=273 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109996.131229] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=323 TOS=0x00 PREC=0xC0 TTL=64 ID=21498 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=4651 PROTO=UDP SPT=6666 DPT=6666 LEN=275 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109996.131248] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=323 TOS=0x00 PREC=0xC0 TTL=64 ID=21498 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=4651 PROTO=UDP SPT=6666 DPT=6666 LEN=275 ]

<0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109997.108133] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=284 TOS=0x00 PREC=0xC0 TTL=64 ID=21499 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=256 TOS=0x00 PREC=0x00 TTL=64 ID=4713 PROTO=UDP SPT=6666 DPT=6666 LEN=236 ] <0.4> 2016-02-13 21:01:28 Telcontar kernel - - - [1109997.108151] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:21:85:16:2d:0b:00:03:0d:05:17:fc:08:00 SRC=192.168.1.15 DST=192.168.1.14 LEN=284 TOS=0x00 PREC=0xC0 TTL=64 ID=21499 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.14 DST=192.168.1.15 LEN=256 TOS=0x00 PREC=0x00 TTL=64 ID=4713 PROTO=UDP SPT=6666 DPT=6666 LEN=236 ]





Now for the receiver machine entries.

AmonLanc:~ # zgrep "192.168.1" /var/log/firewall-20160213.xz | grep "192.168.1.14" | grep
"192.168.1.15" | less


<0.4> 2016-02-13T21:01:01.105714+01:00 AmonLanc kernel - - - [2520419.232118] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=15290 DF PROTO=TCP SPT=35744 DPT=22 WINDOW=353 RES=0x00 ACK URGP=0 OPT (0101080A42244BBF258D7DEF) <0.4> 2016-02-13T21:01:01.116469+01:00 AmonLanc kernel - - - [2520419.247091] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=15291 DF PROTO=TCP SPT=35744 DPT=22 WINDOW=353 RES=0x00 ACK URGP=0 OPT (0101080A42244BCE258D7DF3) <0.4> 2016-02-13T21:01:05.397371+01:00 AmonLanc kernel - - - [2520423.527376] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=15292 DF PROTO=TCP SPT=35744 DPT=22 WINDOW=353 RES=0x00 ACK URGP=0 OPT (0101080A42245C86258D8221) <0.4> 2016-02-13T21:01:07.269142+01:00 AmonLanc kernel - - - [2520425.399594] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3668 PROTO=UDP SPT=6665 DPT=6666 LEN=177 <0.4> 2016-02-13T21:01:07.269171+01:00 AmonLanc kernel - - - [2520425.399641] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3669 PROTO=UDP SPT=6666 DPT=6666 LEN=177 <0.4> 2016-02-13T21:01:07.269177+01:00 AmonLanc kernel - - - [2520425.399726] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3670 PROTO=UDP SPT=6665 DPT=6666 LEN=177 <0.4> 2016-02-13T21:01:07.269180+01:00 AmonLanc kernel - - - [2520425.399744] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=197 TOS=0x00 PREC=0x00 TTL=64 ID=3671 PROTO=UDP SPT=6666 DPT=6666 LEN=177 <0.4> 2016-02-13T21:01:07.360140+01:00 AmonLanc kernel - - - [2520425.400108] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=3672 PROTO=UDP SPT=6665 DPT=6666 LEN=323


Many more almost identical packets skipped from mail.


<0.4> 2016-02-13T21:01:10.317417+01:00 AmonLanc kernel - - - [2520428.446284] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3811 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.441288+01:00 AmonLanc kernel - - - [2520428.571871] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=289 TOS=0x00 PREC=0x00 TTL=64 ID=3812 PROTO=UDP SPT=6665 DPT=6666 LEN=269 <0.4> 2016-02-13T21:01:10.441316+01:00 AmonLanc kernel - - - [2520428.571911] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=289 TOS=0x00 PREC=0x00 TTL=64 ID=3813 PROTO=UDP SPT=6666 DPT=6666 LEN=269 <0.4> 2016-02-13T21:01:10.445027+01:00 AmonLanc kernel - - - [2520428.575592] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=531 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4224703E0000000001030307) <0.4> 2016-02-13T21:01:10.445675+01:00 AmonLanc kernel - - - [2520428.576002] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=532 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A4224703F258D870F) <0.4> 2016-02-13T21:01:10.445693+01:00 AmonLanc kernel - - - [2520428.576087] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3814 PROTO=UDP SPT=6665 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.445697+01:00 AmonLanc kernel - - - [2520428.576111] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3815 PROTO=UDP SPT=6666 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.445700+01:00 AmonLanc kernel - - - [2520428.576138] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=434 TOS=0x00 PREC=0x00 TTL=64 ID=533 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A4224703F258D870F) <0.4> 2016-02-13T21:01:10.449372+01:00 AmonLanc kernel - - - [2520428.576496] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3816 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.449391+01:00 AmonLanc kernel - - - [2520428.576522] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3817 PROTO=UDP SPT=6666 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.461423+01:00 AmonLanc kernel - - - [2520428.588600] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=534 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=237 RES=0x00 ACK URGP=0 OPT (0101080A4224704B258D8713) <0.4> 2016-02-13T21:01:10.461450+01:00 AmonLanc kernel - - - [2520428.588634] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=535 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=260 RES=0x00 ACK URGP=0 OPT (0101080A4224704B258D8713) <0.4> 2016-02-13T21:01:10.461454+01:00 AmonLanc kernel - - - [2520428.588666] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3818 PROTO=UDP SPT=6665 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.461457+01:00 AmonLanc kernel - - - [2520428.588702] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3819 PROTO=UDP SPT=6666 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.461460+01:00 AmonLanc kernel - - - [2520428.588731] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=297 TOS=0x00 PREC=0x00 TTL=64 ID=3820 PROTO=UDP SPT=6665 DPT=6666 LEN=277 <0.4> 2016-02-13T21:01:10.461462+01:00 AmonLanc kernel - - - [2520428.588747] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=297 TOS=0x00 PREC=0x00 TTL=64 ID=3821 PROTO=UDP SPT=6666 DPT=6666 LEN=277 <0.4> 2016-02-13T21:01:10.461465+01:00 AmonLanc kernel - - - [2520428.588765] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=3822 PROTO=UDP SPT=6665 DPT=6666 LEN=275 <0.4> 2016-02-13T21:01:10.461468+01:00 AmonLanc kernel - - - [2520428.588780] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=295 TOS=0x00 PREC=0x00 TTL=64 ID=3823 PROTO=UDP SPT=6666 DPT=6666 LEN=275 <0.4> 2016-02-13T21:01:10.461470+01:00 AmonLanc kernel - - - [2520428.588879] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=536 DF PROTO=TCP SPT=42574 DPT=4080 WINDOW=260 RES=0x00 ACK FIN URGP=0 OPT (0101080A4224704C258D8713) <0.4> 2016-02-13T21:01:10.461473+01:00 AmonLanc kernel - - - [2520428.589225] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3824 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.461476+01:00 AmonLanc kernel - - - [2520428.589251] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3825 PROTO=UDP SPT=6666 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.485368+01:00 AmonLanc kernel - - - [2520428.615887] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=58396 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A422470670000000001030307) <0.4> 2016-02-13T21:01:10.489387+01:00 AmonLanc kernel - - - [2520428.616150] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=50170 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A422470670000000001030307) <0.4> 2016-02-13T21:01:10.489415+01:00 AmonLanc kernel - - - [2520428.616252] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58397 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A42247067258D8719) <0.4> 2016-02-13T21:01:10.489418+01:00 AmonLanc kernel - - - [2520428.616297] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50171 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A42247067258D871A) <0.4> 2016-02-13T21:01:10.489421+01:00 AmonLanc kernel - - - [2520428.616324] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3826 PROTO=UDP SPT=6665 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.489424+01:00 AmonLanc kernel - - - [2520428.616352] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3827 PROTO=UDP SPT=6666 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.489426+01:00 AmonLanc kernel - - - [2520428.616377] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3828 PROTO=UDP SPT=6665 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.489429+01:00 AmonLanc kernel - - - [2520428.616393] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=309 TOS=0x00 PREC=0x00 TTL=64 ID=3829 PROTO=UDP SPT=6666 DPT=6666 LEN=289 <0.4> 2016-02-13T21:01:10.489432+01:00 AmonLanc kernel - - - [2520428.616413] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=434 TOS=0x00 PREC=0x00 TTL=64 ID=58398 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A42247067258D8719) <0.4> 2016-02-13T21:01:10.489435+01:00 AmonLanc kernel - - - [2520428.616457] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=418 TOS=0x00 PREC=0x00 TTL=64 ID=50172 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A42247067258D871A) <0.4> 2016-02-13T21:01:10.489438+01:00 AmonLanc kernel - - - [2520428.616793] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3830 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.489440+01:00 AmonLanc kernel - - - [2520428.616815] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3831 PROTO=UDP SPT=6666 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.489443+01:00 AmonLanc kernel - - - [2520428.616838] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3832 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.489446+01:00 AmonLanc kernel - - - [2520428.616854] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3833 PROTO=UDP SPT=6666 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.501420+01:00 AmonLanc kernel - - - [2520428.630090] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58399 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A42247075258D871D) <0.4> 2016-02-13T21:01:10.501449+01:00 AmonLanc kernel - - - [2520428.630125] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58400 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=251 RES=0x00 ACK URGP=0 OPT (0101080A42247075258D871D) <0.4> 2016-02-13T21:01:10.501452+01:00 AmonLanc kernel - - - [2520428.630158] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3834 PROTO=UDP SPT=6665 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.501455+01:00 AmonLanc kernel - - - [2520428.630186] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3835 PROTO=UDP SPT=6666 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.501458+01:00 AmonLanc kernel - - - [2520428.630214] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3836 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.501460+01:00 AmonLanc kernel - - - [2520428.630230] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3837 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.501463+01:00 AmonLanc kernel - - - [2520428.630292] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58401 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=296 RES=0x00 ACK URGP=0 OPT (0101080A42247075258D871D) <0.4> 2016-02-13T21:01:10.501466+01:00 AmonLanc kernel - - - [2520428.630337] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3838 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.501468+01:00 AmonLanc kernel - - - [2520428.630353] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3839 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.501471+01:00 AmonLanc kernel - - - [2520428.630594] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58402 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=339 RES=0x00 ACK URGP=0 OPT (0101080A42247075258D871D) <0.4> 2016-02-13T21:01:10.501474+01:00 AmonLanc kernel - - - [2520428.630634] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=301 TOS=0x00 PREC=0x00 TTL=64 ID=3840 PROTO=UDP SPT=6665 DPT=6666 LEN=281 <0.4> 2016-02-13T21:01:10.501476+01:00 AmonLanc kernel - - - [2520428.630655] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=301 TOS=0x00 PREC=0x00 TTL=64 ID=3841 PROTO=UDP SPT=6666 DPT=6666 LEN=281 <0.4> 2016-02-13T21:01:10.501480+01:00 AmonLanc kernel - - - [2520428.630727] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=58403 DF PROTO=TCP SPT=42575 DPT=4080 WINDOW=339 RES=0x00 ACK FIN URGP=0 OPT (0101080A42247076258D871D) <0.4> 2016-02-13T21:01:10.501483+01:00 AmonLanc kernel - - - [2520428.631094] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3842 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.501485+01:00 AmonLanc kernel - - - [2520428.631119] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3843 PROTO=UDP SPT=6666 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.505510+01:00 AmonLanc kernel - - - [2520428.635519] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50173 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=237 RES=0x00 ACK URGP=0 OPT (0101080A4224707A258D871E) <0.4> 2016-02-13T21:01:10.505538+01:00 AmonLanc kernel - - - [2520428.635554] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50174 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=260 RES=0x00 ACK URGP=0 OPT (0101080A4224707A258D871E) <0.4> 2016-02-13T21:01:10.505541+01:00 AmonLanc kernel - - - [2520428.635587] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3844 PROTO=UDP SPT=6665 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.505544+01:00 AmonLanc kernel - - - [2520428.635616] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=296 TOS=0x00 PREC=0x00 TTL=64 ID=3845 PROTO=UDP SPT=6666 DPT=6666 LEN=276 <0.4> 2016-02-13T21:01:10.505546+01:00 AmonLanc kernel - - - [2520428.635645] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3846 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.505549+01:00 AmonLanc kernel - - - [2520428.635661] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3847 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.505552+01:00 AmonLanc kernel - - - [2520428.635755] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50175 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=305 RES=0x00 ACK URGP=0 OPT (0101080A4224707B258D871E) <0.4> 2016-02-13T21:01:10.505555+01:00 AmonLanc kernel - - - [2520428.635775] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3848 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.505557+01:00 AmonLanc kernel - - - [2520428.635814] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=3849 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:10.505560+01:00 AmonLanc kernel - - - [2520428.636065] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50176 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=345 RES=0x00 ACK URGP=0 OPT (0101080A4224707B258D871E) <0.4> 2016-02-13T21:01:10.505563+01:00 AmonLanc kernel - - - [2520428.636107] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=301 TOS=0x00 PREC=0x00 TTL=64 ID=3850 PROTO=UDP SPT=6665 DPT=6666 LEN=281 <0.4> 2016-02-13T21:01:10.505566+01:00 AmonLanc kernel - - - [2520428.636127] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=301 TOS=0x00 PREC=0x00 TTL=64 ID=3851 PROTO=UDP SPT=6666 DPT=6666 LEN=281 <0.4> 2016-02-13T21:01:10.509367+01:00 AmonLanc kernel - - - [2520428.636411] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=50177 DF PROTO=TCP SPT=42576 DPT=4080 WINDOW=353 RES=0x00 ACK FIN URGP=0 OPT (0101080A4224707B258D871E) <0.4> 2016-02-13T21:01:10.509396+01:00 AmonLanc kernel - - - [2520428.636737] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3852 PROTO=UDP SPT=6665 DPT=6666 LEN=271 <0.4> 2016-02-13T21:01:10.509400+01:00 AmonLanc kernel - - - [2520428.636759] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=291 TOS=0x00 PREC=0x00 TTL=64 ID=3853 PROTO=UDP SPT=6666 DPT=6666 LEN=271


skipping...



<0.4> 2016-02-13T21:01:25.254277+01:00 AmonLanc kernel - - - [2520443.384772] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=4840 PROTO=UDP SPT=6665 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:25.254300+01:00 AmonLanc kernel - - - [2520443.384809] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=4841 PROTO=UDP SPT=6666 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:25.284625+01:00 AmonLanc kernel - - - [2520443.415154] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4842 PROTO=UDP SPT=6665 DPT=6666 LEN=285 <0.4> 2016-02-13T21:01:25.284654+01:00 AmonLanc kernel - - - [2520443.415195] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=305 TOS=0x00 PREC=0x00 TTL=64 ID=4843 PROTO=UDP SPT=6666 DPT=6666 LEN=285 <0.4> 2016-02-13T21:01:25.293423+01:00 AmonLanc kernel - - - [2520443.423960] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=33049 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4224AA3F0000000001030307) <0.4> 2016-02-13T21:01:25.317460+01:00 AmonLanc kernel - - - [2520443.447704] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4844 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:25.317487+01:00 AmonLanc kernel - - - [2520443.447738] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4845 PROTO=UDP SPT=6666 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:25.317491+01:00 AmonLanc kernel - - - [2520443.447779] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=33050 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A4224AA57258D958F) <0.4> 2016-02-13T21:01:25.317494+01:00 AmonLanc kernel - - - [2520443.447854] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=434 TOS=0x00 PREC=0x00 TTL=64 ID=33051 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A4224AA57258D958F) <0.4> 2016-02-13T21:01:25.348540+01:00 AmonLanc kernel - - - [2520443.479022] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=4846 PROTO=UDP SPT=6665 DPT=6666 LEN=323 <0.4> 2016-02-13T21:01:25.348568+01:00 AmonLanc kernel - - - [2520443.479063] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=4847 PROTO=UDP SPT=6666 DPT=6666 LEN=323 <0.4> 2016-02-13T21:01:25.348639+01:00 AmonLanc kernel - - - [2520443.479101] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=33052 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=237 RES=0x00 ACK URGP=0 OPT (0101080A4224AA76258D9598) <0.4> 2016-02-13T21:01:25.348642+01:00 AmonLanc kernel - - - [2520443.479133] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=33053 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=260 RES=0x00 ACK URGP=0 OPT (0101080A4224AA76258D9598) <0.4> 2016-02-13T21:01:25.348671+01:00 AmonLanc kernel - - - [2520443.479286] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=33054 DF PROTO=TCP SPT=42608 DPT=4080 WINDOW=260 RES=0x00 ACK FIN URGP=0 OPT (0101080A4224AA76258D9598) <0.4> 2016-02-13T21:01:25.369409+01:00 AmonLanc kernel - - - [2520443.499922] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=41019 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4224AA8B0000000001030307) <0.4> 2016-02-13T21:01:25.369459+01:00 AmonLanc kernel - - - [2520443.500072] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=48520 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4224AA8B0000000001030307) <0.4> 2016-02-13T21:01:25.382493+01:00 AmonLanc kernel - - - [2520443.512793] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=4848 PROTO=UDP SPT=6665 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:25.382521+01:00 AmonLanc kernel - - - [2520443.512829] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=4849 PROTO=UDP SPT=6666 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:25.382524+01:00 AmonLanc kernel - - - [2520443.512871] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=41020 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A4224AA98258D95A2) <0.4> 2016-02-13T21:01:25.382527+01:00 AmonLanc kernel - - - [2520443.512920] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=48521 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A4224AA98258D95A3) <0.4> 2016-02-13T21:01:25.382530+01:00 AmonLanc kernel - - - [2520443.512945] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=434 TOS=0x00 PREC=0x00 TTL=64 ID=41021 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A4224AA98258D95A2) <0.4> 2016-02-13T21:01:25.382532+01:00 AmonLanc kernel - - - [2520443.512985] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=418 TOS=0x00 PREC=0x00 TTL=64 ID=48522 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=229 RES=0x00 ACK PSH URGP=0 OPT (0101080A4224AA98258D95A3) <0.4> 2016-02-13T21:01:25.413566+01:00 AmonLanc kernel - - - [2520443.543766] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4850 PROTO=UDP SPT=6665 DPT=6666 LEN=274 <0.4> 2016-02-13T21:01:25.413597+01:00 AmonLanc kernel - - - [2520443.543810] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4851 PROTO=UDP SPT=6666 DPT=6666 LEN=274 <0.4> 2016-02-13T21:01:25.413600+01:00 AmonLanc kernel - - - [2520443.543851] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=41022 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=229 RES=0x00 ACK URGP=0 OPT (0101080A4224AAB7258D95A9) <0.4> 2016-02-13T21:01:25.413603+01:00 AmonLanc kernel - - - [2520443.543884] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=41023 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=326 RES=0x00 ACK URGP=0 OPT (0101080A4224AAB7258D95A9) <0.4> 2016-02-13T21:01:25.413606+01:00 AmonLanc kernel - - - [2520443.543921] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=48523 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=237 RES=0x00 ACK URGP=0 OPT (0101080A4224AAB7258D95AB) <0.4> 2016-02-13T21:01:25.413608+01:00 AmonLanc kernel - - - [2520443.543941] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=48524 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=319 RES=0x00 ACK URGP=0 OPT (0101080A4224AAB7258D95AB) <0.4> 2016-02-13T21:01:25.413611+01:00 AmonLanc kernel - - - [2520443.543966] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=41024 DF PROTO=TCP SPT=42609 DPT=4080 WINDOW=339 RES=0x00 ACK FIN URGP=0 OPT (0101080A4224AAB7258D95A9) <0.4> 2016-02-13T21:01:25.413614+01:00 AmonLanc kernel - - - [2520443.544168] SFW2-IN-ACC-EST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=48525 DF PROTO=TCP SPT=42610 DPT=4080 WINDOW=353 RES=0x00 ACK FIN URGP=0 OPT (0101080A4224AAB7258D95AB) <0.4> 2016-02-13T21:01:25.449447+01:00 AmonLanc kernel - - - [2520443.580033] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4852 PROTO=UDP SPT=6665 DPT=6666 LEN=274 <0.4> 2016-02-13T21:01:25.449476+01:00 AmonLanc kernel - - - [2520443.580073] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=294 TOS=0x00 PREC=0x00 TTL=64 ID=4853 PROTO=UDP SPT=6666 DPT=6666 LEN=274 <0.4> 2016-02-13T21:01:25.482145+01:00 AmonLanc kernel - - - [2520443.612735] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4854 PROTO=UDP SPT=6665 DPT=6666 LEN=273 <0.4> 2016-02-13T21:01:25.482168+01:00 AmonLanc kernel - - - [2520443.612772] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=293 TOS=0x00 PREC=0x00 TTL=64 ID=4855 PROTO=UDP SPT=6666 DPT=6666 LEN=273


<0.4> 2016-02-13T21:01:46.577589+01:00 AmonLanc kernel - - - [2520464.708052] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=277 TOS=0x00 PREC=0x00 TTL=64 ID=5381 PROTO=UDP SPT=6666 DPT=6666 LEN=257 <0.4> 2016-02-13T21:01:46.628596+01:00 AmonLanc kernel - - - [2520464.759138] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=5382 PROTO=UDP SPT=6665 DPT=6666 LEN=323 <0.4> 2016-02-13T21:01:46.628624+01:00 AmonLanc kernel - - - [2520464.759180] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=5383 PROTO=UDP SPT=6666 DPT=6666 LEN=323 <0.4> 2016-02-13T21:01:46.628627+01:00 AmonLanc kernel - - - [2520464.759215] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=5384 PROTO=UDP SPT=6665 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:46.628630+01:00 AmonLanc kernel - - - [2520464.759233] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=344 TOS=0x00 PREC=0x00 TTL=64 ID=5385 PROTO=UDP SPT=6666 DPT=6666 LEN=324 <0.4> 2016-02-13T21:01:47.189400+01:00 AmonLanc kernel - - - [2520465.317197] SFW2-IN-ACC-REL IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=104 TOS=0x00 PREC=0xC0 TTL=64 ID=36173 PROTO=ICMP TYPE=3 CODE=3 [SRC=192.168.1.15 DST=192.168.1.14 LEN=76 TOS=0x00 PREC=0xC0 TTL=64 ID=21525 DF PROTO=UDP SPT=123 DPT=123 LEN=56 ] <0.4> 2016-02-13T21:01:47.189427+01:00 AmonLanc kernel - - - [2520465.317236] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=236 TOS=0x00 PREC=0x00 TTL=64 ID=5386 PROTO=UDP SPT=6665 DPT=6666 LEN=216 <0.4> 2016-02-13T21:01:47.189430+01:00 AmonLanc kernel - - - [2520465.317271] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=236 TOS=0x00 PREC=0x00 TTL=64 ID=5387 PROTO=UDP SPT=6666 DPT=6666 LEN=216 <0.4> 2016-02-13T21:01:51.191763+01:00 AmonLanc kernel - - - [2520469.322216] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=277 TOS=0x00 PREC=0x00 TTL=64 ID=5388 PROTO=UDP SPT=6665 DPT=6666 LEN=257 <0.4> 2016-02-13T21:01:51.191788+01:00 AmonLanc kernel - - - [2520469.322255] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=277 TOS=0x00 PREC=0x00 TTL=64 ID=5389 PROTO=UDP SPT=6666 DPT=6666 LEN=257 <0.4> 2016-02-13T21:01:51.251846+01:00 AmonLanc kernel - - - [2520469.381662] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=343 TOS=0x00 PREC=0x00 TTL=64 ID=5390 PROTO=UDP SPT=6665 DPT=6666 LEN=323

<0.4> 2016-02-13T21:02:03.305249+01:00 AmonLanc kernel - - - [2520481.435844] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=77 TOS=0x00 PREC=0x00 TTL=64 ID=5500 PROTO=UDP SPT=6665 DPT=6666 LEN=57 <0.4> 2016-02-13T21:02:03.305271+01:00 AmonLanc kernel - - - [2520481.435881] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=77 TOS=0x00 PREC=0x00 TTL=64 ID=5501 PROTO=UDP SPT=6666 DPT=6666 LEN=57 <0.4> 2016-02-13T21:02:03.603818+01:00 AmonLanc kernel - - - [2520481.734365] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=285 TOS=0x00 PREC=0x00 TTL=64 ID=5502 PROTO=UDP SPT=6665 DPT=6666 LEN=265 <0.4> 2016-02-13T21:02:03.603848+01:00 AmonLanc kernel - - - [2520481.734406] SFW2-INext-ACC-TRUST IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=285 TOS=0x00 PREC=0x00 TTL=64 ID=5503 PROTO=UDP SPT=6666 DPT=6666 LEN=265 lines 1593-1714/1714 (END)


log rotate happened about here, messages seems to be lost to the log.


<0.4> 2016-02-13T23:17:27.116233+01:00 AmonLanc kernel - - - [2528605.239775] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38633 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4248C9340000000001030307) <0.4> 2016-02-13T23:17:28.113360+01:00 AmonLanc kernel - - - [2528606.241005] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38634 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4248CD1E0000000001030307) <0.4> 2016-02-13T23:17:30.112359+01:00 AmonLanc kernel - - - [2528608.242994] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38635 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4248D4F00000000001030307) <0.4> 2016-02-13T23:17:34.120325+01:00 AmonLanc kernel - - - [2528612.250963] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38636 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4248E4980000000001030307) <0.4> 2016-02-13T23:17:42.128356+01:00 AmonLanc kernel - - - [2528620.258991] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38637 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A424903E00000000001030307) <0.4> 2016-02-13T23:17:58.160339+01:00 AmonLanc kernel - - - [2528636.290976] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=38638 DF PROTO=TCP SPT=670 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A424942800000000001030307) <0.4> 2016-02-13T23:18:18.733376+01:00 AmonLanc kernel - - - [2528656.862093] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=39574 DF PROTO=TCP SPT=730 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A424992DB0000000001030307) <0.4> 2016-02-13T23:18:33.761360+01:00 AmonLanc kernel - - - [2528671.890990] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=39578 DF PROTO=TCP SPT=730 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A4249CD900000000001030307) <0.4> 2016-02-13T23:18:49.808352+01:00 AmonLanc kernel - - - [2528687.938987] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=39579 DF PROTO=TCP SPT=730 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A424A0C400000000001030307) <0.4> 2016-02-13T23:19:21.873366+01:00 AmonLanc kernel - - - [2528720.002963] SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC=00:03:0d:05:17:fc:00:21:85:16:2d:0b:08:00 SRC=192.168.1.14 DST=192.168.1.15 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=39580 DF PROTO=TCP SPT=730 DPT=43030 WINDOW=29200 RES=0x00 SYN URGP=0 OPT (020405B40402080A424A89800000000001030307) lines 1-10/10 (END)





- -- Cheers,
Carlos E. R.
(from 13.1 x86_64 "Bottle" at Telcontar)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iEYEARECAAYFAla/vUAACgkQtTMYHG2NR9WhegCfZuFBCBV/NVpfrJ4FQx1rhHk0
vXcAninOWy8pFT+8ZBElGb8MyiPbdMXl
=lDNR
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups