Date: 18 Feb 2003 18:06:35 +1300 From: Andrew Thompson <andy@fud.org.nz> To: "Douglas K. Rand" <rand@meridian-enviro.com> Cc: freebsd-security@freebsd.org, freebsd-ports@freebsd.org Subject: Re: FireDNS and net.inet.udp.log_in_vain Message-ID: <1045544795.19726.3.camel@sambo.fud.org.nz> In-Reply-To: <873cmmpc16.wl@bemidji.meridian-enviro.com> References: <873cmmpc16.wl@bemidji.meridian-enviro.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 2003-02-18 at 15:17, Douglas K. Rand wrote: > I've been playing with MessageWall on one of our systems, and I > noticed that we've been getting a lot of messages like: > > Connection attempt to UDP <our-ip>:<port-above-1024> from <ip-addr-in-resolv.conf>:53 > > in our logs. I have log_in_vain="YES" in my /etc/rc.conf, which sets: > > net.inet.tcp.log_in_vain: 1 > net.inet.udp.log_in_vain: 1 > > Has anybody else noticed this, and is there a solution other than > "Ignore those log messages" or "Unset net.inet.udp.log_in_vain"? (Both > of these solutions /are/ fairly reasonable.) > I believe this is caused when the dns server is slow/overloaded, the resolver queries the server but the packet arrives back after the local port is closed. Andy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1045544795.19726.3.camel>