Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 4 Feb 2002 15:06:58 -0500
From:      "Joe & Fhe Barbish" <barbish@a1poweruser.com>
To:        <jacks@sage-american.com>
Cc:        "FBSD" <freebsd-questions@FreeBSD.ORG>
Subject:   RE: Firewall Denies - w/info
Message-ID:  <LPBBIGIAAKKEOEJOLEGOGEJECGAA.barbish@a1poweruser.com>
In-Reply-To: <3.0.5.32.20020204135700.01917078@mail.sage-american.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
http://www.securitystats.com/tools/portsearch.asp

It says 1024 = netspy trojan

-----Original Message-----
From: owner-freebsd-questions@FreeBSD.ORG
[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of
jacks@sage-american.com
Sent: Monday, February 04, 2002 2:57 PM
To: freebsd-questions@freebsd.org
Subject: Firewall Denies - w/info

Sheesh! Here are the denies with the questions again. Sorry!
I'm getrting a lot of these "denies" of outgoing UDP shown in my firewall
log. The lookups show they are NSLs or root.servers, but not MY
nameservers. Many are on port 1024, but not always (some on the samba
ports).

Also, some try to go out on port 53, but not to MY nameservers....

Since it looks like the requests are coming from my machines, they look
harmless & wonder if I need the requests, and what could be asking for the
info. Does anyone know what these are for...??? ...or what is asking for
the info?

Deny UDP 64.xxx.xx.xxx:1024 198.41.0.4:53 out via tun0
Deny UDP 64.xxx.xx.xxx:1024 192.203.230.10:53 out via tun0
Deny UDP 64.xxx.xx.xxx:1024 192.36.148.17:53 out via tun0
Deny UDP 64.xxx.xx.xxx:1024 198.32.64.12:53 out via tun0

Best regards,
Jack L. Stone,
Server Admin

===================================================
Sage-American
http://www.sage-american.com
jacks@sage-american.com

"My center is giving way, my right is in retreat;
....situation excellent! ....I shall attack!"
===================================================

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?LPBBIGIAAKKEOEJOLEGOGEJECGAA.barbish>