Re: Bursts of traffic on my firewall

Mike A. Harris Thu, 03 May 2001 13:14:33 -0700

On Thu, 3 May 2001, Gustav Schaffter wrote:

>May  3 20:11:30 odin kernel: Packet log: input DENY eth1 PROTO=6
>192.31.80.30:53 192.168.0.2:62133 L=44 S=0x00 I=40962 F=0x0000 T=41 (#4)
>
>Has anyone else noticed the same? This is an absolutely new experience
>for me.
>
>What would make external DNS servers start sending me tcp packets?

DNS uses UDP *and* TCP.  If the response wont fit in a UDP
packet, it uses TCP.  If you block TCP, you block DNS.



----------------------------------------------------------------------
Mike A. Harris                  Shipping/mailing address:
OS Systems Engineer             190 Pittsburgh Ave., Sault Ste. Marie,
Red Hat Inc.                    Ontario, Canada, P6C 5B3
http://www.redhat.com           Phone: (705)949-2136
----------------------------------------------------------------------
Latest XFree86 beta RPMS: ftp://people.redhat.com/mharris/xfree86



_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: Bursts of traffic on my firewall

Reply via email to