Hoi,
Het valt me op dat mijn firewall(=kerio personal firewall) veel UDP datagrams inbound op de poorten 67 en 68 blocked.
Naar mijn weten worden poorten 67 en 68 gebruikt voor DHCP, maar wat hebben deze computers er dan mee te maken, want deze zijn niet de DHCP server?
Wat mij ook opvalt is het IP 192.168.0.1 , dit is het IP van mijn kabelmodem. Waarom stuurt mijn kabelmodem mij DHCP pakketjes alsof ik hier om gevraagd zou hebben of alsof ik een DHCP server ben?
Ik ben niet bang dat ik gehacked wordt ofzo. Het is pure interesse waarom dit verkeer plaatsvind.
Wie kan dit verkeer verklaren???
Hier een stukje van de log file:
Het valt me op dat mijn firewall(=kerio personal firewall) veel UDP datagrams inbound op de poorten 67 en 68 blocked.
Naar mijn weten worden poorten 67 en 68 gebruikt voor DHCP, maar wat hebben deze computers er dan mee te maken, want deze zijn niet de DHCP server?
Wat mij ook opvalt is het IP 192.168.0.1 , dit is het IP van mijn kabelmodem. Waarom stuurt mijn kabelmodem mij DHCP pakketjes alsof ik hier om gevraagd zou hebben of alsof ik een DHCP server ben?
Ik ben niet bang dat ik gehacked wordt ofzo. Het is pure interesse waarom dit verkeer plaatsvind.
Wie kan dit verkeer verklaren???
Hier een stukje van de log file:
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
| 1,[29/Jun/2003 13:16:33] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:16:33] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:16:40] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:16:40] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:16:48] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:16:48] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:16:56] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:16:56] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:17:31] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:17:31] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:17:39] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:17:39] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:17:47] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:17:47] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:17:55] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:17:55] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:24:05] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:24:05] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:24:12] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:24:12] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:24:20] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:24:20] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:24:28] Rule 'Packet to unopened port received': Blocked: In UDP, t-indiv7-118.athome.tue.nl [131.155.242.118:68]->localhost:67, Owner: no owner 1,[29/Jun/2003 13:24:28] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:25:03] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:25:03] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:25:11] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:25:11] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:25:19] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:25:19] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner 1,[29/Jun/2003 13:25:27] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:68->localhost:67, Owner: no owner 1,[29/Jun/2003 13:25:27] Rule 'Packet to unopened port received': Blocked: In UDP, 192.168.0.1:67->localhost:68, Owner: no owner |
[ Voor 8% gewijzigd door Unicron op 29-06-2003 16:44 ]
/u/30080/hot-features.png?f=community)
/u/31525/boblight2-icon.png?f=community){kind=icon}
:strip_icc():strip_exif()/u/43473/crop5e12eeae6a054_cropped.jpeg?f=community)
/u/43807/ZwartGat.png?f=community)
maar misschien: