Date: Wed, 16 Jun 1999 07:45:31 +1200 From: "Dan Langille" <junkmale@xtra.co.nz> To: security@freebsd.org Subject: named timeouts Message-ID: <19990615194828.ZOVN93999.mta1-rme@wocker>
next in thread | raw e-mail | index | archive | help
On my main machine, which is also running named, the daily security check always has lots of these types of entries. Typically there are about 50 a day. I think it's because a dns request has been started, but by the time the reply arrives, the firewall has terminated that port connection (I'm running ipfilter). Would it make sense to slightly increase the time such connections are held to see if the nummber of such log entries decreases? If so, how? cheers. > Connection attempt to UDP 127.0.0.1:3282 from 127.0.0.1:53 > Connection attempt to UDP 127.0.0.1:512 from 127.0.0.1:3363 > Connection attempt to UDP 127.0.0.1:3373 from 127.0.0.1:53 > Connection attempt to UDP 127.0.0.1:3378 from 127.0.0.1:53 > Connection attempt to UDP 127.0.0.1:3380 from 127.0.0.1:53 -- Dan Langille - DVL Software Limited The FreeBSD Diary - http://www.FreeBSDDiary.org/freebsd/ NZ FreeBSD User Group - http://www.nzfug.nz.freebsd.org/ The Racing System - http://www.racingsystem.com/racingsystem.htm To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990615194828.ZOVN93999.mta1-rme>