Sounds like another DoubleClick server to me, if it is then it won't harm
anyone if you block it (except advertising). Try to resolve the addresses
with NSLookup and see if you come up with any DoubleClick servers, even
browse to the IP's with your browser, you will probably see Advertising
messages or a message that says: "This is a DoubleClick Server".
James Smith
-----Original Message-----
From: Damia Soler i Estrela
[mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 08, 1999 1:05 PM
To: [EMAIL PROTECTED]
Subject: packets with source port httpd, false log
entries on firewall-1
Hello:
I have a lots of entries on the log, that are not
ilegal access
to my machines. The source port are always 80 (http), and
the
destination port are the ip address of the people that are
surfing the
web. That is , the web-server send packets to the browser,
and the
firewall think that the server is opening a connection to a
internal
hosts.
Is true that the web-server are trying to open a
connection to the
surfer-browser?
Is something specific or special on that web-server/page
(an applet,
push or something similar)?
Is any way of avoid this?
Are causing malfunctions while surfing??? If i am
stopping packets..
then someone miss them..
Is a timeout issue?
Exist any patch related with this?
Thanks in advance
Damia Soler
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
