[Firehol-support] Strange problem...
Sim
simvirus at gmail.com
Sun Dec 14 12:15:16 CET 2008
Hello!
Sometimes I have this strange problem in my Firehol:
Dec 14 12:00:53 firewall kernel: [89443.304634] ''IN-www2fw':'IN=ppp0
OUT= MAC= SRC=213.210.140.239 DST=77.19.33.12 LEN=40 TOS=0x00
PREC=0x00 TTL=237 ID=65259 PROTO=TCP SPT=11775 DPT=9999 WINDOW=8011
RES=0x00 RST URGP=0
Where:
- SRC (external IP)
- DST (my local IP)
- DPT (my TCP Service running on server and connected to remote client)
This is my firehol.cfg
######################################
server_myservice_ports="tcp/9999"
client_myservice_ports="default"
interface ppp+ www2fw
policy drop
server ICMP accept
server "ssh" accept
server "ftp" accept
server "myservice" accept
client all accept
interface eth1 [..]
######################################
Another strange log is:
Dec 14 12:06:02 firewall kernel: [89751.639874] ''IN-www2fw':'IN=ppp0
OUT= MAC= SRC=80.15.15.15 DST=77.19.33.12 LEN=160 TOS=0x00 PREC=0x00
TTL=50 ID=56371 DF PROTO=TCP SPT=9999 DPT=59529 WINDOW=2896 RES=0x00
ACK PSH URGP=0
Where
- SRC (external IP)
- DST (my local IP)
- SPT (his TCP Service running on remote client connected with my server)
Have you any idea?
Very thanks!
More information about the Firehol-support
mailing list