[Leaplist] iptables question ....
William A. Mahaffey III
wam at hiwaay.net
Sat Oct 13 15:32:43 EST 2007
.... I have a newly upgraded box Gigabyte P965-DS3 mbd, Intel Q6600 CPU,
8 GB of Patriot RAM running F7 x86-64. I was having some small problems
getting NFS going, so I added a rule to the end of the default iptables
rules to log whatever packets it was dropping before dropping them
(default just silently drops packets). This allowed me to get NFS up &
going, however I noticed flurries of dropped packets from my other 2
x86_64 boxen on oddball ports (821-850). The particular port seems to
change whenever I reboot this box, which I have been doing quite a bit
of while getting everything setup. Most of the ports have no listed
service on them (no entry in /etc/services file). Does anyone know what
is going on here ? All of these boxen are on a local LAN, behind an
IPCOP firewall, behind a DSL modem which I disconnect unless I am
actually using it, so they are not public servers or normally publicly
visible. I have the same log-&-drop rule in most of my boxes & I don't
see this kind of stuff going on there. TIA ....
--
William A. Mahaffey III
----------------------------------------------------------------------
"The M1 Garand is without doubt the finest implement of war
ever devised by man."
-- Gen. George S. Patton Jr.
More information about the Leaplist
mailing list