Abend miteinander,
ich installiere gerade einen neuen Server und wollte mal CSF ausprobieren. Nun "spamt" es mir jedoch die ganze syslog voll.
solche Meldungen alle 2-3 Sekunden.
Offene Ports
In welche Richtung muss ich denn da nach dem Fehler suchen?
ich installiere gerade einen neuen Server und wollte mal CSF ausprobieren. Nun "spamt" es mir jedoch die ganze syslog voll.
Code:
Dec 28 00:07:21 odin kernel: [ 1435.198022] Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:cc:e4:a0:a3:08:00 SRC=37.120.171.1 DST=37.120.171.255 LEN=49 TOS=0x00 PREC=0x00 TTL=64 ID=37848 DF PROTO=UDP SPT=50052 DPT=32414 LEN=29
Dec 28 00:07:26 odin kernel: [ 1440.197242] Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:cc:e4:a0:a3:08:00 SRC=37.120.171.1 DST=37.120.171.255 LEN=49 TOS=0x00 PREC=0x00 TTL=64 ID=46017 DF PROTO=UDP SPT=43360 DPT=32412 LEN=29
Dec 28 00:07:26 odin kernel: [ 1440.197640] Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:cc:e4:a0:a3:08:00 SRC=37.120.171.1 DST=37.120.171.255 LEN=49 TOS=0x00 PREC=0x00 TTL=64 ID=27446 DF PROTO=UDP SPT=50052 DPT=32414 LEN=29
Dec 28 00:07:31 odin kernel: [ 1445.197432] Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:cc:e4:a0:a3:08:00 SRC=37.120.171.1 DST=37.120.171.255 LEN=49 TOS=0x00 PREC=0x00 TTL=64 ID=46429 DF PROTO=UDP SPT=43360 DPT=32412 LEN=29
Dec 28 00:07:31 odin kernel: [ 1445.197918] Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:cc:e4:a0:a3:08:00 SRC=37.120.171.1 DST=37.120.171.255 LEN=49 TOS=0x00 PREC=0x00 TTL=64 ID=28424 DF PROTO=UDP SPT=50052 DPT=32414 LEN=29
solche Meldungen alle 2-3 Sekunden.
Offene Ports
Code:
# Allow incoming TCP ports
TCP_IN = "22,80,10000"
# Allow outgoing TCP ports
TCP_OUT = "25,110,22,53,80,113,443"
# Allow incoming UDP ports
UDP_IN = "53,28191,41128,68"
# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list.
UDP_OUT = " 53,113,123"
In welche Richtung muss ich denn da nach dem Fehler suchen?