11 Aug
2001
11 Aug
'01
09:01
maf king wrote:
kernel: Packet log: output DENY ippp0 PROTO=17 address.of.my.machine:61127 address.of.my.ISP:53
To OP: Provide the log entries, as they are, not interpreted and cut
These packets are ( _/ probably \_ ) harmless. They are requests from some process on your machine doing a DNS enquiry to your ISP. Various deamons could be responsible - eg sendmail, xntpd, etc, etc - anything which may need to map an IP address to a hostname.
DNS is correct, but ...
Linux processes use the (generally unreserved) high ports (>60000 ish) to start outgoing connections like this.
... ports in this range are from masqueraded connections. If domain querys are rejected, this machine woud not be very useful on the internet. HTH leo