Ted Kaczmarek <tedkaz@xxxxxxxxxxxxx> wrote: > Look at the source of the web site you are visiting. > > Ted > > Feb 21 11:53:41 delta kernel: DROP-TCP :IN= OUT=eth1 SRC=192.168.20.60 \ > > DST=209.225.0.6 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=22160 PROTO=TCP \ > > SPT=41197 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > > > > It seems that with every request to a website there is also a request to > > IP 209.225.0.6 wich leads to exodus.net. > > > > I am completely worried about this. Who can tell me what is going on? Ted: Feb 21 16:59:22 delta kernel: DROP-TCP :IN= OUT=eth1 SRC=192.168.20.60 \ DST=209.225.11.237 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=TCP \ SPT=41504 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 Feb 21 16:59:23 delta kernel: DROP-TCP :IN= OUT=eth1 SRC=192.168.20.60 \ DST=82.139.196.116 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=22160 PROTO=TCP \ SPT=41501 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 Good point but this is my own site at 82.139.196.116 and I am sure there is nothing pointing to exodus.net. Is this a DNS thing? Regards -- Andreas Meyer
