Indeed, after a bit of poking about it seems that you hit the nail on the head.... now I am trying to figure out how to alter the expiration times in iptables.... but that is a topic for another list if my google time proves fruitless. THANKS! Pat On Fri, 2007-05-04 at 21:52 +0200, Kinkie wrote: > > That supposes that the connection are with legitimate clients, but since the > > OP referred to "SOME.RANDOM.IP.ADDR", and "connections ... to the outside > > world", I suspect it was an open proxy. > > Maybe.. It depends on how random they are... > Still the "destination port is random, source port is my service port" > pattern is typical in the scenario I described. >
