From owner-freebsd-questions Wed May 31 0:55:16 2000 Delivered-To: freebsd-questions@freebsd.org Received: from usc.edu (usc.edu [128.125.253.136]) by hub.freebsd.org (Postfix) with ESMTP id 40F9D37B795 for ; Wed, 31 May 2000 00:55:13 -0700 (PDT) (envelope-from abdulgha@usc.edu) Received: from scf-fs.usc.edu (root@scf-fs.usc.edu [128.125.253.183]) by usc.edu (8.9.3.1/8.9.3/usc) with ESMTP id AAA16112 for ; Wed, 31 May 2000 00:55:12 -0700 (PDT) Received: from phoenix (res-3617.usc.edu [128.125.31.111]) by scf-fs.usc.edu (8.9.3.1/8.9.3/usc) with SMTP id AAA21173 for ; Wed, 31 May 2000 00:55:11 -0700 (PDT) Message-ID: <023701bfcad5$9b0787b0$6f1f7d80@phoenix> Reply-To: "Khairuddin Abdul Ghani" From: "Khairuddin Abdul Ghani" To: Subject: finding source of outgoing icmp packets Date: Wed, 31 May 2000 00:55:36 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello everyone. One of my ipfw rules frequently catches and logs ICMP packets originating from the local machine. My question is, how do I find out where these packets are coming from in terms of process, user, etc? Thanks! Best regards, Khairuddin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message