Re: ipfw log
- From: Chronos <chronos@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 28 Dec 2005 00:58:06 +0000
After replacing Ditch Brodie with a small shell script on Wednesday 28 Dec
2005 00:18, the following appeared on stdout:
> Dec 27 19:13:01 32 Deny UDP xx.xx.xxx.xx:60018 204.225.44.10:53 out via
> ed0
>
> This is not the only line like this. There are several like it in the
> recent log.
>
> The xxx.xxx.xxx.xxx represents the ip address of my external NIC. I think
> it seems strange to find that something is trying to get out. Can anyone
> tell me what this means is happening?
It's a UDP packet from a non privileged port on your external interface to
port 53 on discovery.dynip.com. Try looking up what uses UDP on port 53
that you *really* need your firewall to allow you to query if you're going
to turn domain names into numbers.
# ipfw add pass udp from me to any 53 keep-state
That last bit is important. man 8 ipfw for reasons why.
--
Chronos
.
- References:
- ipfw log
- From: Ditch Brodie
- ipfw log
- Prev by Date: Re: ipfw log
- Next by Date: Re: learning unix w/ fbsd?
- Previous by thread: Re: ipfw log
- Next by thread: Re: ipfw log
- Index(es):
Relevant Pages
|
|
