Re: Odd behavior with blocked DNS
This is a discussion on Re: Odd behavior with blocked DNS within the IPFilter forums, part of the System Security and Security Related category; apologies accepted... On 08 9, 06, at 9:14 AM, Michael T. Davis wrote: > > At 17:03:57....
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
08-09-2006
|
|||
|
|||
Re: Odd behavior with blocked DNS
apologies accepted...
On 08 9, 06, at 9:14 AM, Michael T. Davis wrote: > > At 17:03:57.06 on 8-AUG-2006 in message > <01M5R7MBWOB6A4O8M2@er6s1.eng.ohio-state.edu>, I wrote: > >> [...] >> Despite the above rules, TCP port 53 SYN packets are apparently >> making >> it past the firewall, since I'm seeing RST (reset) packets being >> sent out in >> response.[...] > > Apologies...I was misinterpreting things. The packets weren't aimed > at port 53 on our network--they were coming _from_ port 53 on the > remote > system. The initial packet has not only SYN but ACK set. I'd > guess this guy > in China's trying to get a rise out of systems here. > > Sorry for the false alarm. > > Regards, > Mike > -- > Michael T. Davis (Mike) | Systems Specialist: > CBE,MSE > E-mail: davism@ecr6.ohio-state.edu | Departmental Networking/ > Computing > -or- DAVISM+@osu.edu | The Ohio State > University > http://www.ecr6.ohio-state.edu/~davism/ | 197 Watts, (614) > 292-6928 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 01:51 PM.
