Date: Thu, 23 Jul 2020 21:47:44 -0400 From: Ernie Luzar <luzar722@gmail.com> To: RW <rwmaillists@googlemail.com> Cc: freebsd-questions@freebsd.org Subject: Re: ipfw is making contact with 198.61.170.85 port 4021 Message-ID: <5F1A3DC0.10702@gmail.com> In-Reply-To: <20200724022247.59475066@gumby.homeunix.com> References: <5F1A354B.7030508@gmail.com> <20200724022247.59475066@gumby.homeunix.com>
next in thread | previous in thread | raw e-mail | index | archive | help
RW via freebsd-questions wrote: > On Thu, 23 Jul 2020 21:11:39 -0400 > Ernie Luzar wrote: > >> A firewall should not be making its own contact with any public ip >> address. This is a security hole. >> >> I have not played with ipfw since before it was rewritten to become >> ipfw2 so I do not know when this internal "call home" function was >> added. pf and ipf are not doing this. I block it to be secure. >> >> Can any one provide any info about this? > > It might help if you explain what you have actually seen. I see log entries in the hosts /var/log/security file for outbound packets going to the ip address and port number comming from 10.0.10.1 which is the private ip address of the host. sendmail is turned off and nothing else is running on the host
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5F1A3DC0.10702>