[wplug] syslog messages, what do they mean.
John Harrold
jmh17 at pitt.edu
Fri Oct 17 12:38:14 EDT 2003
so we have a firewall (fw) and currently someone is transferring files from fw to
123.456.789.987. when i looked at the console there were a whole bunch of
things flying across the screen. i looked at syslog and saw the following:
Oct 17 12:31:05 fw kernel: IN=eth0 OUT=eth0 SRC=123.456.789.987
DST=123.456.789.987 LEN=1500 TOS=0x08 PREC=0x00 TTL=62 ID=62304 DF PROTO=TCP
SPT=22 DPT=32767 WINDOW=63712 RES=0 x00 ACK URGP=0
can anyone explain what this means?
--
--------------------------------------------------------------------------
| /"\
john harrold | \ / ASCII ribbon campaign
jmh at member.fsf.org | X against HTML mail
the most useful idiot | / \
--------------------------------------------------------------------------
What difference does it make to the dead, the orphans, and the homeless,
whether the mad destruction is brought under the name of totalitarianism or
the holy name of liberty and democracy?
--Gandhi
--------------------------------------------------------------------------
gpg --keyserver keys.indymedia.org --recv-key F65A739E
--------------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://penguin.wplug.org/pipermail/wplug/attachments/20031017/eff380d5/attachment-0001.bin
More information about the wplug
mailing list