http://www.echogent.com/cgi-bin/fwlog.pl This is great page to analize this yourself. Andrey
Arif Mamdani wrote:
I'm hoping someone on the list can give me some insight into what's going on here. At first I thought that it might be a traceroute, but I was under the impression that traceroute would increment the destination port, which isn't happening. Any assistance would be appreciated.
-arif
here's the log:
Nov 25 08:51:42 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56849 DPT=33435 LEN=8
Nov 25 08:51:46 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56849 DPT=33435 LEN=8
Nov 25 08:51:50 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=2 ID=0 PROTO=UDP SPT=56849 DPT=33435 LEN=8
Nov 25 08:51:54 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=3 ID=0 PROTO=UDP SPT=56849 DPT=33435 LEN=8
Nov 25 08:52:15 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:19 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:23 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=2 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:27 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=3 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:32 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:36 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:40 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=2 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
Nov 25 08:52:44 arif-host1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:50:fc:59:16:5b:00:20:e0:35:18:25:08:00 SRC=143.166.34.130 DST=209.98.2.1 LEN=28 TOS=0x00 PREC=0x00 TTL=3 ID=0 PROTO=UDP SPT=56850 DPT=33435 LEN=8
it continues on this way till 8:53:50, then starts up again at 18:24:04, and stops at 18:25:48, then starts again at 21:34:39 and finally stops at 21:52:06
thanks again.
-arif
-------------------------------------------------------
This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
-------------------------------------------------------
This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
