From owner-freebsd-questions@FreeBSD.ORG Thu Mar 19 14:55:45 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id A58F9AE7 for ; Thu, 19 Mar 2015 14:55:45 +0000 (UTC) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4F6FFC8A for ; Thu, 19 Mar 2015 14:55:45 +0000 (UTC) Received: from mail.cs.ait.ac.th (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id 08CDB160B0A; Thu, 19 Mar 2015 21:55:29 +0700 (ICT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= content-type:content-type:mime-version:message-id:date:date :in-reply-to:subject:subject:from:from:received:received :received; s=selector1; t=1426776928; x=1428591329; bh=VOE6DLPUo 3dIDZoG0rxPwsLz7FpynA02FN6EBgtYQTg=; b=DSHr10sMPIp/VvzqACsI72uXa bGJz0lJBaW+ZOM+9YPcOunuBd4K2X7bJp4ASRfzhPrKLJEBaZEQAPCfyDZd5fPN6 ntkzTj+5HfarDZNSp2mTiHu9zqraTAM0CNjnNa1UuJZqm+syTP2eMiWRcL/CXlcT Uw0GuEq4t5SLCwezgg= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by mail.cs.ait.ac.th (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id sh3oocoW1JNQ; Thu, 19 Mar 2015 21:55:28 +0700 (ICT) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id 51BC4160B09; Thu, 19 Mar 2015 21:55:28 +0700 (ICT) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.14.7/8.14.7/Submit) id t2JEta6x081938; Thu, 19 Mar 2015 21:55:36 +0700 (ICT) (envelope-from on@banyan.cs.ait.ac.th) From: Olivier Nicole To: Ernie Luzar Subject: Re: public network traffic to my ip address port 53 In-Reply-To: <550AE2A7.3010903@gmail.com> (message from Ernie Luzar on Thu, 19 Mar 2015 10:52:23 -0400) Date: Thu, 19 Mar 2015 21:55:36 +0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain Cc: freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Mar 2015 14:55:45 -0000 Ernie, > In my firewall log I see thousands of udp packets from ip addresses all > over the word trying to access my freebsd gateway server on port 53. > Right now I am blocking them and see no negative effects. > Is there any valid reason to allow these unsolicited inbound packets > access to my system on port 53? You know port 53 is DNS? Maybe your IP was previously used by a DNS server. If you bloc port 53, you may consider leaving it open enough to be able to solve your own DNS requests. Olivier > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > --