Linux-Bulgaria.ORG

навигация

начало

пощенски списък

архив на групата

По Дата

Re: lug-bg: parvi stapki

Subject: Re: lug-bg: parvi stapki
From: i.kolemanov@xxxxxxxx (ISM Kolemanov, Ivan)
Date: Wed, 6 Sep 2000 11:19:58 +0200



zapochna da stava interesno:

Snort report:
Sep  4 21:31:43 211.34.121.57:2429 -> my1st_DMZ-IP:21 SYN **S*****
...
Sep  4 21:31:43 211.34.121.57:2443 -> mylast_DMZ-IP:21 SYN **S*****

Sep  5 14:35:02 10.0.0.1:21 -> my1st_DMZ-IP:21 SYNFIN **SF****
...
Sep  5 14:35:02 10.0.0.1:21 -> mylast_DMZ-IP:21 SYNFIN **SF****

IPFilter log:
ipflog.0:Sep  5 14:26:23 tangra ipmon[31411]: 14:26:23.057576
         xl0 @1:4 b 10.0.0.1,21 -> 255.255.255.255,21 PR tcp len 20 40
-SF IN
ipflog.0:Sep  5 14:26:23 tangra ipmon[31411]: 14:26:23.096216
         xl0 @1:4 b 10.0.0.1,21 -> mygateIP,21 PR tcp len 20 40 -SF IN
ipflog.0:Sep  5 14:35:02 tangra ipmon[31411]: 14:35:02.038646
         xl0 @1:4 b 10.0.0.1,21 -> my1st_DMZ-IP,21 PR tcp len 20 40 -SF IN
...
ipflog.0:Sep  5 14:35:05 tangra ipmon[31411]: 14:35:05.319257
         xl0 @1:4 b 10.0.0.1,21 -> mylast_DMZ-IP,21 PR tcp len 20 40 -SF IN

ako nqkoj moze da mi kaze kak da hvana istinskiq IP, idvast kato 10.0.0.1
na internet vrazkata mi, ste sam mu mnogo zadalzen.

btw,email do 'kgromc@xxxxxxxxxxxxxxxxxxx' vse oste ne e otgovoril
veroqtno ste pusna drug do abuse@xxxxxxxxx

>> 33  RFC1918-Host (192.168.137.158)  952.505 ms  1304.449 ms  1091.662 ms
>> 34  211.34.121.57 (211.34.121.57)  1043.118 ms  1170.166 ms  1038.541 ms
>> 
>> mnogo mi e lubopitno otnosno 33
>incidents@xxxxxxxxxxxxxxxxx
tova maj se okazva che e praktika - da se davat LAN adresi na ruteri, 
koito kato ne filtrirat vatreshnite addressi davat takiva izpalneniq kato 33

P.S. saznavam che sam malko ili poveche Off Topic, taka che priemam
predlozeniq
za naj-podhodqstiq mail list otnosno firewalls i internet sigurnost, no ne
zelaq
da se vkluchvam v poveche ot edin - nqmam dostatachno vreme :(

Pozdravi,
Ivan Kolemanov
==================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
Otpiswaneto RABOTI !!! : Majordomo@xxxxxxxxxxxxxxxxxx UNSUBSCRIBE LUG-BG
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Във връзка с:
- Re: lug-bg: parvi stapki
  - Изпратено от: bkrosnov@xxxxxxxxx (Boyan Krosnov)
- Re: lug-bg: parvi stapki
  - Изпратено от: stoev@xxxxxxxxxxxxxxxxx (Julian Stoev)

Предишно по дата: lug-bg: Problemi sus sendmail.cf!!!
Следващо по дата: Re: Re: lug-bg: Problemi sus sendmail.cf!!!
Предишно по тема: Re: lug-bg: parvi stapki
Следващо по тема: Re: lug-bg: parvi stapki
Индекс:
- По дата
- По тема

наши приятели

линукс за българи
http://linux-bg.org

FSA-BG
http://fsa-bg.org

OpenFest
http://openfest.org

FreeBSD BG
http://bg-freebsd.org

KDE-BG
http://kde.fsa-bg.org/

Gnome-BG
http://gnome.cult.bg/

проект OpenFMI
http://openfmi.net

NetField Forum
http://netField.ludost.net/forum/

Linux-Bulgaria.ORG