Since I have installed 9.3, my /var/log/firewall is loaded with hundreds of the following: May 29 03:25:40 avalon kernel: SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=192.168.0.31 DST=224.0.0.251 LEN=107 TOS=0x00 PREC=0x00 TTL=255 ID=8 DF PROTO=UDP SPT=5353 DPT=5353 LEN=87 Looking up port 5353 I see that this is used by the Multicast DNS daemon (mdnsd). # ps -ef | grep mdnsd nobody 6833 1 0 May24 ? 00:00:00 /usr/sbin/mdnsd -f /etc/rendezvous.conf -b Is there anything I should do about this? Seems like the system shouldn't be configured in a way that the firewall log is swamped with these messages but I am not sure if opening up port 5353 in the firewall is a good thing. Thanks.
Robert Paulsen wrote:
Since I have installed 9.3, my /var/log/firewall is loaded with hundreds of the following:
May 29 03:25:40 avalon kernel: SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=192.168.0.31 DST=224.0.0.251 LEN=107 TOS=0x00 PREC=0x00 TTL=255 ID=8 DF PROTO=UDP SPT=5353 DPT=5353 LEN=87
Looking up port 5353 I see that this is used by the Multicast DNS daemon (mdnsd).
# ps -ef | grep mdnsd nobody 6833 1 0 May24 ? 00:00:00 /usr/sbin/mdnsd -f /etc/rendezvous.conf -b
Is there anything I should do about this? Seems like the system shouldn't be configured in a way that the firewall log is swamped with these messages but I am not sure if opening up port 5353 in the firewall is a good thing.
There is probably a way of supressing this message instead of having it logged. Check your firewall setting - maybe the default is to log a message, so all you need is a rule that says "don't". -- /Per Jessen, Zürich -- http://www.spamchek.com/ - managed anti-spam and anti-virus solution.
participants (2)
-
Per Jessen -
Robert Paulsen