I am beginning to put together some perl scripts to analyze my firewall
logs.
In this process I have come across some dns resource records I don't
understand.
There is absolutely no reason to suspect the owners of these hosts any
improper activity.
The code that looks for suspicious activity has not been written yet.
129.43.10.12.in-addr.arpa. 15714 IN CNAME
129.128/27.43.10.12.in-addr.arpa.
251.163.11.12.in-addr.arpa. 15715 IN CNAME
251.248/29.163.11.12.in-addr.arpa.
66.24.17.12.in-addr.arpa. 15720 IN CNAME
66.64/27.24.17.12.in-addr.arpa.
3.208.20.12.in-addr.arpa. 15722 IN CNAME
3.0/26.208.20.12.in-addr.arpa.
71.123.4.12.in-addr.arpa. 79983 IN CNAME
71.64/28.123.4.12.in-addr.arpa.
What is the significance of the "n.m" between the "CNAME" and the "/"?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
