Date: Sat, 22 Feb 2003 12:10:54 -0500 From: Alexander Anderson <alex@upful.org> To: freebsd-security@FreeBSD.ORG, freebsd-ports@FreeBSD.ORG Subject: Re: FireDNS and net.inet.udp.log_in_vain Message-ID: <20030222171054.GA97944@dusty.upful.org> In-Reply-To: <1045544795.19726.3.camel@sambo.fud.org.nz> References: <873cmmpc16.wl@bemidji.meridian-enviro.com> <1045544795.19726.3.camel@sambo.fud.org.nz>
next in thread | previous in thread | raw e-mail | index | archive | help
> > Connection attempt to UDP <our-ip>:<port-above-1024> from > > <ip-addr-in-resolv.conf>:53 > > I believe this is caused when the dns server is slow/overloaded, the > resolver queries the server but the packet arrives back after the local > port is closed. Is there any way to set up a rule in IPFW to drop such packets? Or, as a workaround, if there a way to set up syslog to ignore these "connection attempts"? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030222171054.GA97944>