> Something make me trouble in this line. > > In fact, samba seem to be installed. > > This looks like an attack : a cracker spoof the target with it's own ip > (ip src and dst are target's ip), > and send a request to the well known ip ports of windows(r)(c)(tm)(...) > sharing system. And the target system answer... to itself and make > recursive answers. The goal : lock the remote system. > But you are protected for this attack because netfilter (iptables is just > a configuration tool who talk to netfilter) had locked this kind of > connection. > > Sorry for my very bad english level, but I hope I had help you to > clearify the situation.
Removed firestarter and the problem is gone. Ran lokkit again and checked my firewall, and it's good. -- ZekeVarg <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]