Mailinglist Archive: opensuse-security (499 mails)

< Previous Next >
Strange UDP packets
  • From: Jochen Lillich <jl@xxxxxxxxxxxx>
  • Date: 18 Jun 2002 15:06:16 +0200
  • Message-id: <nuclear.m3u1o0zqgn.fsf@xxxxxxxxxxxx>
Hi,

on a firewall test system with newly installed iptables packet filter,
I get the following log entries:

Jun 18 11:38:48 lnxsrv2 kernel: RULE 9 -- Deny IN=eth0 OUT=
MAC=ff:ff:ff:ff:ff:ff:00:60:67:78:2e:37:08:00 SRC=192.168.1.12
DST=255.255.255.255 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP
SPT=32769 DPT=7741 LEN=24

Jun 18 11:38:48 lnxsrv2 kernel: RULE 9 -- Deny IN=eth0 OUT=
MAC=ff:ff:ff:ff:ff:ff:00:60:67:78:2e:37:08:00 SRC=192.168.1.12
DST=255.255.255.255 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP
SPT=32769 DPT=7741 LEN=24

The source host is an internal work PC, the internal net is DHCP
based.

What could be the source of these UDP packets? DHCP? DNS? Any clues?

Best regards,

Jochen

< Previous Next >
This Thread
  • No further messages