Andreas Hansson wrote: >>>kernel: IN=eth0 OUT= MAC=00:50:da:05:c5:f4:00:04:dd:0b:e0:92:08:00 >>>SRC=210.11.68.47 DST=204.144.132.162 LEN=56 TOS=0x00 PREC=0x00 TTL=238 >> > ID=14090 > >>>PROTO=ICMP TYPE=3 CODE=3 [SRC=204.144.132.162 DST=210.11.68.47 LEN=121 >> > TOS=0x00 > >>>PREC=0x00 TTL=248 ID=37692 DF PROTO=UDP SPT=53 DPT=62408 LEN=101 ] >>> >>> 204.144.132.162 is my server. >> >>210.11.68.78 is answering with a "port unreachable" (Type 3 ,Code 3) to >>a DNS request from 204.144.132.162 >> > > > I'd say it's the reverse: > 210.11.68.47 made a dns request from port 62408 to your dns server > 204.144.132.162 > > Your server 204.144.132.162 replied, but either 210.11.68.47 is > misconfigured or the program that sent the request has closed, so you get an > icmp port unreachable back for your reply. > > Andreas > > >
Andreas, You are right. I overlooked that the the rejection was from a Source port 53 to a Dest port 62408. The packet that received the "port unreachable" is an answer, not a request! Francisco -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
