Re: IPF rule response [should be IPFW rule response instead]

From: Kris Anderson (ohshutup@zdnetmail.com)
Date: 06/25/01 

Date: Sun, 24 Jun 2001 23:58:08 -0700
From: "Kris Anderson" <ohshutup@zdnetmail.com>
To: "Karsten W. Rohrbach" <karsten@rohrbach.de>

Oops, you are right. I am. doh...

But none the less what is the 195. network trying to do with my system?
 I didn't initiate any requests from/to that system.

Kris Anderson(ohshutup@zdnetmail.com)@2001.06.22 15:03:12 +0000:
> Howdy folks,
>
> I've got a rule in my ipf that is reporting the following to syslog
>
> <private_if>: <2>Jun 22 14:51:34 /kernel: ipfw: 3 Deny TCP 195.224.212.72:21
> <public_if>:21 in via rl0
>
> I have limited understanding but it looks like that some bonehead on
> the 195. network is doing some sort of goofy ftp thing to my public_if,
> almost as if it was ftp relaying.
>
> Could somebody unconfuse me as to what this means?
>
>it seems that you are mixing up ipf (ipfilter) and ipfw in the first
>place. a properly configured ipfilter with ftp in-core proxy for >keeping
state on the sessions would solve it i think.
>
/k 

-- 
> "In Christianity neither morality nor religion come into contact with
> reality at any point." --Friedrich Nietzsche
KR433/KR11-RIPE -- WebMonster Community Founder -- nGENn GmbH SeniorTechie
http://www.webmonster.de/ -- ftp://ftp.webmonster.de/ -- http://www.ngenn.net/
karsten&rohrbach.de -- alpha&ngenn.net -- alpha&scene.org -- catch@spam.de
GnuPG 0x2964BF46 2001-03-15 42F9 9FFF 50D4 2F38 DBEE  DF22 3340 4F4E2964
BF46
Please do not remove my address from To: and Cc: fields in mailing lists.10x
___________________________________________________________________
To get your own FREE ZDNet Onebox - FREE voicemail, email, and fax,
all in one place - sign up today at http://www.zdnetonebox.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • RE: ftp not working after security update .#10054
    ... Do the issue occurs when you visit specific FTP site or all FTP sites? ... What your network topology? ... the SBS server separates the network into two ... 825763 How to configure Internet access in Windows Small Business Server ...
    (microsoft.public.windows.server.sbs)
  • Re: Atari St/Lantronix
    ... I was thinking I could upload files to a ftp server from my st but How do I get it to connect with the Lantronx box. ... MSS1 looks more like a terminal server over the serial port than a UDS-10 ... configure its network parameters as described in the Lantronix manual; ... (It will probably have to be a host on your local network, ...
    (comp.sys.atari.st.tech)
  • Re: networking between fedora and macos
    ... >> Maybe set up ftp server on one or both and then use one of the many ftp ... > I advise against using ftp to move files over a wireless network. ... > you are using wep someone could have monitored your network long enough ... > all) and again will see your passwords passed in the clear. ...
    (Fedora)
  • Re: Sysinstall FTP from LAN - not working
    ... > I am trying to install 5.2.1 from an iMac running OSX with an FTP ... > connecting to the FTP server on the iMac. ... > I set up the network information automatically with the DHCP selection ...
    (freebsd-questions)
  • Re: RSX-11M-Plus Pool questions
    ... My immediate project is to provide IP connectivity to this network, ... Telnet and FTP connectivity. ... Process Software does have TCPWare ...
    (comp.os.vms)