A girl on our network has complained to our IT admin. that her computer
has been getting probed by my computer (according to Norton's program).
I've been able to figure out that it only happens when I play
America's Army. My log files look like this ... Note, I'm setup as DHCP
so my IP is probably different now....

May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=86 DF PROTO=UDP SPT=33029 DPT=7864 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=87 DF PROTO=UDP SPT=33029 DPT=7865 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=88 DF PROTO=UDP SPT=33029 DPT=7866 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=89 DF PROTO=UDP SPT=33029 DPT=7867 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=90 DF PROTO=UDP SPT=33029 DPT=7868 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=91 DF PROTO=UDP SPT=33029 DPT=7869 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=92 DF PROTO=UDP SPT=33029 DPT=7870 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=93 DF PROTO=UDP SPT=33029 DPT=7871 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=94 DF PROTO=UDP SPT=33029 DPT=7872 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=95 DF PROTO=UDP SPT=33029 DPT=7873 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=96 DF PROTO=UDP SPT=33029 DPT=7874 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=97 DF PROTO=UDP SPT=33029 DPT=7875 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=98 DF PROTO=UDP SPT=33029 DPT=7876 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=99 DF PROTO=UDP SPT=33029 DPT=7877 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=38 TOS=0x00 PREC=0x00
TTL=64 ID=100 DF PROTO=UDP SPT=33029 DPT=7878 LEN=18
May 22 16:20:54 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=34 TOS=0x00 PREC=0x00
TTL=64 ID=858 DF PROTO=UDP SPT=9778 DPT=8777 LEN=14
May 22 16:20:57 localhost kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC= SRC=192.168.1.2 DST=255.255.255.255 LEN=34 TOS=0x00 PREC=0x00
TTL=64 ID=519 DF PROTO=UDP SPT=9777 DPT=8777 LEN=14



Can you tell me if this is serious or not? I have shorewall set up and
also have snort running but I really don't know what the heck I'm doing
with either :-). Please try to explain as if you are talking to your
grandmother as IT gibberish doesn't mean too much to me :-)