Le 13/12/2016 à 19:53, jdd a écrit :
Le 13/12/2016 à 19:06, Darin Perusich a écrit :
In the FW logs grep for SPT=21, source port 21/ftp, to limit to only those connections
yes. and I guess only the "ACC" mean accepted? like this one:
2016-11-30T16:45:16.136115+01:00 ks311900 kernel: SFW2-INext-ACC-TCP (...) SRC=163.172.66.5 DST=188.xxx LEN=60 TOS=0x02 PREC=0x00 TTL=58 ID=63972 DF PROTO=TCP SPT=21834 DPT=80 WINDOW=29200 RES=0x00 CWR ECE SYN URGP=0 OPT (020405B40402080A4540D5330000000001030307)
my error. I was following an advice found on the net. The most important for this is not the source port (the one of the client) but my own port (my server's one), so DPT, not SPT. And then, I didn't notice grep did found SPT=21834, not SPT=21, due to the lack of the -w option so this mean the firewall (suse one) did accept to connect a browser to my web server, perfectly normal grep -w DPT=21 didn't show anything at the date thanks jdd -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org