Date: Thu, 25 Sep 2008 18:44:56 +0300 From: Manolis Kiagias <sonic2000gr@gmail.com> To: Vlad GURDIGA <gurdiga@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Limiting closed port RST Message-ID: <48DBB1F8.2050301@gmail.com> In-Reply-To: <da7069940809250805w5012c05cg33cfe99d1b9da53e@mail.gmail.com> References: <da7069940809250805w5012c05cg33cfe99d1b9da53e@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Vlad GURDIGA wrote: > Hello, > > I've started an Apache bechmark with ab today and a lot of such > messages from kernel appeared in /var/log/messages: > > Sep 25 16:16:34 dev01 kernel: Limiting closed port RST response from > 270 to 200 packets/sec > Sep 25 16:19:10 dev01 kernel: Limiting closed port RST response from > 475 to 200 packets/sec > Sep 25 16:19:15 dev01 kernel: Limiting closed port RST response from > 220 to 200 packets/sec > Sep 25 16:19:19 dev01 kernel: Limiting closed port RST response from > 243 to 200 packets/sec > > What do they mean? > > This normally means someone is repeatedly attempting to connect to a closed port, i.e. you are getting port-scanned! Normally the kernel limits this response so the connection is not overwhelmed by the replies Maybe your benchmark attempts to also connect to a port other than 80? (i.e. 443 and you are not running https)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48DBB1F8.2050301>