Date: Thu, 23 Jul 2020 22:00:39 -0400 From: Admin <admin@govital.net> To: freebsd-questions@freebsd.org Subject: Re: ipfw is making contact with 198.61.170.85 port 4021 Message-ID: <76d60709-70d6-5441-e1a8-d73fb819006b@govital.net> In-Reply-To: <5F1A3DC0.10702@gmail.com> References: <5F1A354B.7030508@gmail.com> <20200724022247.59475066@gumby.homeunix.com> <5F1A3DC0.10702@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Greetings Ernie, On 23/07/2020 9:47 pm, Ernie Luzar wrote: > RW via freebsd-questions wrote: >> On Thu, 23 Jul 2020 21:11:39 -0400 >> Ernie Luzar wrote: >> >>> A firewall should not be making its own contact with any public ip >>> address. This is a security hole. >>> >>> I have not played with ipfw since before it was rewritten to become >>> ipfw2 so I do not know when this internal "call home" function was >>> added. pf and ipf are not doing this. I block it to be secure. >>> >>> Can any one provide any info about this? >> >> It might help if you explain what you have actually seen. > > I see log entries in the hosts /var/log/security file for outbound > packets going to the ip address and port number comming from 10.0.10.1 > which is the private ip address of the host. sendmail is turned off > and nothing else is running on the host > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > This seems to be probably from a device in your network. IP address maps to alerts0.envisacor.com Their home page says: > > Solutions For The Security and Home Automation Industry Since 2004 > > > Envisacor is a premiere ODM to the Security and Home Automation > industries. > > > We have designed dozens of products for as many different > companies and have a solid track record for innovation and cost > effectiveness of design. > > > Our expertise extends into all areas of electronics and design > including IP based-products and RF solutions. > Do you have some kind of security or home automation device that's phoning home? -- Chris Demers admin@govital.net https://govital.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?76d60709-70d6-5441-e1a8-d73fb819006b>