Re: Odd behavior with blocked DNS
This is a discussion on Re: Odd behavior with blocked DNS within the IPFilter forums, part of the System Security and Security Related category; At 17:03:57.06 on 8-AUG-2006 in message <01M5R7MBWOB6A4O8M2@er6s1.eng.ohio-state.edu>, I ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
08-09-2006
|
|||
|
|||
Re: Odd behavior with blocked DNS
At 17:03:57.06 on 8-AUG-2006 in message <01M5R7MBWOB6A4O8M2@er6s1.eng.ohio-state.edu>, I wrote: >[...] > Despite the above rules, TCP port 53 SYN packets are apparently making >it past the firewall, since I'm seeing RST (reset) packets being sent out in >response.[...] Apologies...I was misinterpreting things. The packets weren't aimed at port 53 on our network--they were coming _from_ port 53 on the remote system. The initial packet has not only SYN but ACK set. I'd guess this guy in China's trying to get a rise out of systems here. Sorry for the false alarm. Regards, Mike -- Michael T. Davis (Mike) | Systems Specialist: CBE,MSE E-mail: davism@ecr6.ohio-state.edu | Departmental Networking/Computing -or- DAVISM+@osu.edu | The Ohio State University http://www.ecr6.ohio-state.edu/~davism/ | 197 Watts, (614) 292-6928 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 08:08 PM.
