How to interpret ipfw log?
Clement Twine
clem.twain at gmail.com
Thu Apr 14 01:59:00 PDT 2005
[...]
>>> Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP
>>> 192.168.0.200:64970 65.87.165.45:281 out via tx0 Apr 11
>>> 04:27:05 name kernel: ipfw: 2500 Deny TCP
>>> 192.168.0.200:64115 65.87.165.45:106 out via tx0 Apr 11
>>> 04:27:05 name kernel: ipfw: 2500 Deny TCP
>>> 192.168.0.200:62007 65.87.165.45:284 out via tx0
>
>> looks like nmap ;)
>
> I don't remember running nmap. What are the chances that
> machine is compromised?
zero chances - your firewall denied the intruder anyway :-)
clem.
More information about the freebsd-questions
mailing list