Mailinglist Archive: opensuse-security (88 mails)

< Previous Next >
Firewall denying outgoing connections?
  • From: "Carlos E. R." <robin1.listas@xxxxxxxxxx>
  • Date: Fri, 14 Apr 2006 17:06:57 +0200 (CEST)
  • Message-id: <Pine.LNX.4.61.0604141656080.15089@xxxxxxxxxxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


What causes this error in the firewall?

Apr 14 17:03:37 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0
SRC=192.168.1.12 DST=85.85.72.60 LEN=40 TOS=0x08 PREC=0x00 TTL=64 ID=53126
DF PROTO=TCP SPT=6881 DPT=4712 WINDOW=32767 RES=0x00 ACK URGP=0

Apr 14 17:03:57 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0
SRC=192.168.1.12 DST=85.85.72.60 LEN=40 TOS=0x08 PREC=0x00 TTL=64 ID=53548
DF PROTO=TCP SPT=6881 DPT=4712 WINDOW=32767 RES=0x00 ACK URGP=0

Apr 14 17:04:17 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0
SRC=192.168.1.12 DST=85.85.72.60 LEN=40 TOS=0x08 PREC=0x00 TTL=64 ID=53840
DF PROTO=TCP SPT=6881 DPT=4712 WINDOW=32767 RES=0x00 ACK URGP=0

Apr 14 17:04:37 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0
SRC=192.168.1.12 DST=85.85.72.60 LEN=40 TOS=0x08 PREC=0x00 TTL=64 ID=54228
DF PROTO=TCP SPT=6881 DPT=4712 WINDOW=32767 RES=0x00 ACK URGP=0



Why am I denied outgoing access to some ports now and then? These seem to
be triggered by bttorrent downloading the RC1, but I also get some to port
80. At the moment, dozens like the log entry above.

port 6881 is allowed entry in the config:

FW_SERVICES_EXT_TCP="6881:6889"


- --
Cheers,
Carlos Robinson
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFEP7qbtTMYHG2NR9URAhFtAJ48MvbrCMKjutgoJ9gHCeUs8ElONwCfTrGj
i4PJS6b+KLMEChJSXp2KmSg=
=RrDm
-----END PGP SIGNATURE-----


< Previous Next >
Follow Ups