Mailinglist Archive: opensuse-security (499 mails)

< Previous Next >
Re: [suse-security] Strange UDP packets
  • From: BLeonhardt@xxxxxxxxxxx
  • Date: Tue, 18 Jun 2002 16:28:00 +0200
  • Message-id: <OFA16252A8.FCA76A8C-ONC1256BDC.004F5C66@xxxxxxxxxxx>
... I guess it's the port for "klisa" ...

check with "lsof -ni"


Mit freundlichen Grüßen
Bruno Leonhardt

CLP Domino R5 Systemadministrator
___________________________________________________________________________________
AnalyTek Systemhaus
Hospitalstr. 2a

D-65589 Hadamar

Tel.: 06433/81403-15
Fax : 06433/81403-40

Besuchen Sie uns im Internet unter: http://www.analytek.de




Jochen Lillich <jl@xxxxxxxxxxxx>
18.06.02 15:06


An: suse-security@xxxxxxxx
Kopie:
Thema: [suse-security] Strange UDP packets



Hi,

on a firewall test system with newly installed iptables packet filter,
I get the following log entries:

Jun 18 11:38:48 lnxsrv2 kernel: RULE 9 -- Deny IN=eth0 OUT=
MAC=ff:ff:ff:ff:ff:ff:00:60:67:78:2e:37:08:00 SRC=192.168.1.12
DST=255.255.255.255 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP
SPT=32769 DPT=7741 LEN=24

Jun 18 11:38:48 lnxsrv2 kernel: RULE 9 -- Deny IN=eth0 OUT=
MAC=ff:ff:ff:ff:ff:ff:00:60:67:78:2e:37:08:00 SRC=192.168.1.12
DST=255.255.255.255 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP
SPT=32769 DPT=7741 LEN=24

The source host is an internal work PC, the internal net is DHCP
based.

What could be the source of these UDP packets? DHCP? DNS? Any clues?

Best regards,

Jochen

--
To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here




< Previous Next >
This Thread
  • No further messages