firewall log message question
when i was out of town last week, and nobody was at the house,
i get this log message from logcheck reflecting some firewall
block--
To: root@serensoft.com
Subject: server 05/23/01:13.02 system check
From: root <root@serensoft.com>
Date: Wed, 23 May 2001 13:02:02 -0500
Security Violations
=-=-=-=-=-=-=-=-=-=
May 23 12:51:01 server kernel: Packet log: input DENY eth1 PROTO=1 192.168.1.62:3 208.33.90.85:13 L=56 S=0x00 I=30114 F=0x0000 T=248 (#5)
May 23 12:51:05 server kernel: Packet log: input DENY eth1 PROTO=1 192.168.1.62:3 208.33.90.85:13 L=56 S=0x00 I=30125 F=0x0000 T=248 (#5)
May 23 12:51:11 server kernel: Packet log: input DENY eth1 PROTO=1 192.168.1.62:3 208.33.90.85:13 L=56 S=0x00 I=30140 F=0x0000 T=248 (#5)
May 23 12:51:23 server kernel: Packet log: input DENY eth1 PROTO=1 192.168.1.62:3 208.33.90.85:13 L=56 S=0x00 I=30167 F=0x0000 T=248 (#5)
192.168.1.* is my local (intra) net, and 208.33.90.85 is my
public ip number. i don't have any 192.168.1.62 set up, (tho i do
have .1, .2, .100, .102, .200) and i can't see why 208.33.90.85
would be looking for one. port 13, according to /etc/services, is
normally 'daytime' and i don't know what port 3 would normally
be.
can anybody convert this to english for my befuddled old brain
cells?
--
DEBIAN NEWBIE TIP #25 from Will Trillich <will@serensoft.com>
:
Did you know you have MORE THAN ONE CONSOLE to use? There's six,
by default: try Control-Alt-F6 to see console six, Ctl-Alt-F3 for
console 3, and so forth. (If you don't use the X window display
system, you don't need to include the control key.) Each console
can have its own login, running its own jobs. Very handy!
Also see http://newbieDoc.sourceForge.net/ ...
Reply to: