From owner-freebsd-questions Tue Dec 11 8:53:59 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail1.ruraltel.net (mail.ruraltel.net [24.225.0.34]) by hub.freebsd.org (Postfix) with ESMTP id 7476137B416 for ; Tue, 11 Dec 2001 08:53:49 -0800 (PST) Received: from darryl (p189n31.ruraltel.net [24.225.31.189]) by mail1.ruraltel.net (8.11.2/8.11.2) with SMTP id fBBGl8u09480 for ; Tue, 11 Dec 2001 10:47:08 -0600 Reply-To: From: "Darryl Hoar" To: Subject: Firewall_logs Date: Tue, 11 Dec 2001 10:54:32 -0600 Message-ID: <001201c18264$8257b0d0$0701a8c0@darryl> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Greetings, I was needing some help to decode the following: Dec 11 00:19:38 darryl ipmon[95]: 00:19:36.910691 xl0 @0:2 b jgirls.net[66.40.23.76],http -> 192.168.1.209,4882 PR tcp len 20 1492 -A 2216807764 128781 8312 IN Log entry at 12:19:38 am on machine Darryl by ipmon process (PID 95). It came IN on interface xl0. It was from jgirls.net The ip address is 66.40.23.76. It was an http request that came from my internal machine 209. After that, I'm lost. Talked with user of machine 209 and he swears on a stack of bibles he wasn't here at 12:19am. I'm not sure I believe him. thanks for any help. -Darryl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message