Odd PF Denied Message
Michael K. Smith - Adhost
mksmith at adhost.com
Thu Oct 18 08:39:58 PDT 2007
Hello Nikos:
> -----Original Message-----
> From: Nikos Vassiliadis [mailto:nvass at teledomenet.gr]
> Sent: Thursday, October 18, 2007 9:30 AM
> To: freebsd-questions at freebsd.org
> Cc: Michael K. Smith - Adhost
> Subject: Re: Odd PF Denied Message
>
> On Thursday 18 October 2007 17:59:49 Michael K. Smith - Adhost wrote:
> > Hello All:
> >
> > We're getting a ton of these.
> >
> > +Connection attempt to TCP 127.0.0.1:113 from 127.0.0.1:52655
> flags:0x02
>
> This doesn't look like a pf(4) message. This looks like
> sysctl net.inet.tcp.log_in_vain is 1. It logs every connection
> attempt to a non-listening TCP port.
>
> >
> > We've basically allowed all traffic to and from 127.0.0.1 in our
> > ruleset, but nothing seems to work. Does anyone have a magic bullet
> to
> > make this go away?
>
> Yes, set the afore-mentioned sysctl to 0.
Thank you for the clue! We are using log in vain as part of our
security logging for this particular box, but this is the only message
I've ever seen so I'm not sure it's really needed.
Regards,
Mike
More information about the freebsd-questions
mailing list