[BlueOnyx:21207] Re: got it stopped

webmaster webmaster at oldcabin.net
Thu Jul 20 13:39:21 -05 2017 



It was iptables related

Got it to stop by cleaning out all rules

What a morning



>
>
> Getting the snip below
>
> 69.8.136.185  is the machine that I am tailing on
>
>
> anyone know what's going on here?
>
> I have seen this before from OTHER machines hitting this machine but 
> never from the machine back to the same machine
>
> -- snip ---
>
>
> Jul 20 13:16:16 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=12141 DF 
> PROTO=TCP SPT=50256 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:17 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=27166 DF 
> PROTO=TCP SPT=50250 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:19 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=65374 DF 
> PROTO=TCP SPT=50260 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:19 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=61313 DF 
> PROTO=TCP SPT=50252 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:20 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=65375 DF 
> PROTO=TCP SPT=50260 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:21 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=65315 DF 
> PROTO=TCP SPT=50262 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:22 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=65316 DF 
> PROTO=TCP SPT=50262 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
> Jul 20 13:16:22 cabin3 kernel: IN=lo OUT= 
> MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=69.8.136.185 
> DST=69.8.136.240 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=65376 DF 
> PROTO=TCP SPT=50260 DPT=80 WINDOW=43690 RES=0x00 SYN URGP=0
>
>
>
>
> Causing some real grief here
>
> H e l p !?
>
>
> * If it helps we has some bad storms her last night and the machine 
> above me was having issues
>
> Thanks
>
> --Tim
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at mail.blueonyx.it
> http://mail.blueonyx.it/mailman/listinfo/blueonyx
>

More information about the Blueonyx mailing list