On 31 Oct 2002, Alejandro González Hernández - Imoq wrote: [snippage] > That command didn't seem to really affect anything else in the logs, but > I'll copy/paste them here, just in case: > > Oct 31 14:38:25 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37782 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > Oct 31 14:38:28 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37783 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > Oct 31 14:38:34 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37784 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > Oct 31 14:38:46 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37785 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > Oct 31 14:39:10 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37786 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > Oct 31 14:39:58 imoqland kernel: IN=eth0 OUT=eth1 SRC=200.33.79.237 > DST=192.168.105.220 LEN=60 TOS=0x10 PREC=0x00 TTL=63 ID=37787 DF > PROTO=TCP SPT=36841 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 > > *sigh* that's chinese to me :P Another tool you can put in your networking/firewall toolkit is a website called http://www.logi.cc. The gent that runs the site has a netfilter log analyzer that you can copy/paste one of the above log entries and will break it out in detail for a finer level of understanding. -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
