okay, so I just installed this a few hours ago. I am looking at the log summary and this is what I am seeing :
Oct 09 00:34:06 Oct 09 00:34:34 00:00:00:28 Firewall: *TCP_IN Blocked* eth0 tcp some.server.ip 25 my.server.ip 35161 -af-p-
Pretty much every line is port 25 and a few which are 1433, 1989, 113, 6400, etc. The opts also vary a little.
I also see a few udp ins such as :
1 Oct 09 00:03:32 - - Firewall: *UDP_IN Blocked* eth0 udp some.server.ip 45478 my.server.ip 33484 -
My question is, is this normal? Its been on for about 7 hours and has 5800 entries in the log.
Is this blocking my nameservers or something like that? Do I need to add my name server ips, and main shared ip to the allow list or something? I'm lost with this one...
Oct 09 00:34:06 Oct 09 00:34:34 00:00:00:28 Firewall: *TCP_IN Blocked* eth0 tcp some.server.ip 25 my.server.ip 35161 -af-p-
Pretty much every line is port 25 and a few which are 1433, 1989, 113, 6400, etc. The opts also vary a little.
I also see a few udp ins such as :
1 Oct 09 00:03:32 - - Firewall: *UDP_IN Blocked* eth0 udp some.server.ip 45478 my.server.ip 33484 -
My question is, is this normal? Its been on for about 7 hours and has 5800 entries in the log.
Is this blocking my nameservers or something like that? Do I need to add my name server ips, and main shared ip to the allow list or something? I'm lost with this one...
